Multi PFsense - howto configure this

Peque · April 15, 2021, 3:55am

Hi Forum
I'm quite new to the ELK solution, but learns every day

We have a setup with several PF-Sense Routers that I would like get overview over.
I have followed this guide : GitHub - patrickjennings/logstash-pfsense: Logstash configuration for pfSense syslog events.

And I have logs through to ELK from the first router - But I would like to know which is the best way to do this:

- All incomming logs into one index - but able to show all routers at once and seperately?

Is the easiest way just to copy and change the files under /etc/pfelk/conf.d ( and create a new conf file pr router) or is there any other way to do this ?

system · May 13, 2021, 3:55am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Custom name index kibana Logstash	3	325	November 2, 2019
Logstash + pfsense issues Logstash	1	695	March 23, 2020
How to create multiple index logstash Logstash	6	8240	November 13, 2019
Logstash issue with pfSense 2.2.2 (SOLVED) Logstash	9	3322	July 6, 2017
PFSense logs in ELK Stack Logstash	1	3010	September 26, 2019

Multi PFsense - howto configure this

Related topics