This post introduces the newly released TrisulNSM Docker Appliance. A lightweight fast Network Traffic Analytics and Security Monitoring system that can be deployed instantly.
The Docker appliance is on Docker Hub at trisulnsm/trisul6
Here are some links to get your started.
If you need a 'point' solution , this Docker image should be good enough for most deployments. Here are some advantages of installing the packages directly on the host instead of Docker.
–net=hostHost network bridge. If you are uncomfortable with that , and there is no need to be, you can use the raw packages.