OPNsense Forum

Archive => 17.7 Legacy Series => Topic started by: pongafence on August 10, 2017, 03:23:33 pm

Title: Filebeats and Logstash
Post by: pongafence on August 10, 2017, 03:23:33 pm

Hi guys,

We run ELK internally for all of our logging, and run Filebeat specifically on all our servers where possible.

Was wanting to know if we could potentially have Filebeats and Logstash included to export things like Suricata Eve logs and maybe Squid and other system logs into our ELK cluster directly?

At the moment we're just throwing SYSLOGs at it and are trying and working with those logs for the moment.  But itd be nice to have Filebeats and Logstash.

Has anyone else done this yet?

Title: Re: Filebeats and Logstash
Post by: hilfubsi on March 23, 2018, 08:41:12 pm

Trying to achieve that as well. Any luck OP?