redsocks is a transparent proxy relay solution for those dummy applications that do not support communication via proxy servers. Transparent because the clients will not even notice if this traffic is passed to a proxy. As this solution is working on TCP/UDP layers, this means almost any application’s traffic can be pushed through and forced to use a real proxy.
I’m already mentioned in my previous article about Traffic Analysis in Qubes OS, that the IDS system alerts and logs should be passed to a log management system where we can correlate them with other logs and alerts. That system can be called SIEM
However a real SIEM system makes sense in an enterprise environment only, because it is requires 7×24 monitoring, and it is also needs special knowledge and experience to analyze the results.