Pipelines for each device source

Hi, new to the ELK setup. We are exploring to use ELK as our SIEM. Right now we have a log forwarder collecting syslog from various network sources, like cisco, fortinet and even juniper /f5?

In order to break down those logs in the Kibana side, we will need to 1 pipeline for each individual source? Is there any community info that guide us how to create individual pipelines pertaining to different log sources?

Elastic integrations looks good for you.

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.