Filebeat sonicwall module

WilGG · August 4, 2021, 7:25pm

Hi Everyone,

Can someone provide me with a SonicWall module sample config file for filebeat?
When I try to modify sonicwall.yml, the filebeat service crashes. when it is set to default comment state I am able to run the service.

Steps taken

Installed Filebeat
made a Syslog server to receive logs
Syslog server is able to obtain logs
SonicWALL module was enabled
Configured filebeat.yml
Enabled Dashboards
SonicWall dashboard missing in kibana while other filebeat modules were populated
Tried to edit sonicwall module yml - > crashes the filebeat service and unable to parse data.

Do I need a special xpack configuration? what step am I missing ?

Thanks

legoguy1000 · August 5, 2021, 1:08am

Can you post the config you're trying? Can you post the errors from the log when it crashes?

system · September 2, 2021, 3:09am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Struggling with sonicwall module Beats filebeat	4	366	October 31, 2022
Filebeat Sonicwall module - dissect_parsing_error Beats	4	689	November 18, 2020
Filebeat sonicwall module not parsing correctly many messages Beats filebeat	7	565	May 22, 2021
Filebeat on CentOS7 and Ubuntu 16.04 Beats filebeat	2	645	February 20, 2017
Beginner Questions - Interaction Filebeat and Modules and General Q Beats filebeat	1	419	March 23, 2021

Filebeat sonicwall module

Related topics