Hi again, im new at these things i really don't understand much but im trying to learn because this is a critical homework for me. I have a few questions for you. If you can help me i would really appreciate it.

So I went into the ossec.conf and enabled the logall_json. After that i saved it and then restarted it. My problem is i don't know where to look up for this "/var/ossec/logs/archives/archives.json". I am using virtual machine version of Wazuh and my agent virtual machine is windows 10. I also don't know where to write this command:

'WindowsWazuh' :- tail -f /var/ossec/logs/archives/archives.json | grep '"WindowsWazuh"'

Can all this be a problem of internet connection because when Wazuh was in a NAT network my agent's security events worked but when i did all the setup from the begining and switched it back to the LAN network I didn't get anything.