SyslogServer to ELK

mun · April 3, 2017, 7:50am

Hello,

Can anyone help me on this issue?

I have a syslog server and inside these server, there are several folder which are

snmp,
sophos fw,
netflow data &
syslog clients.
I grab those data from different server and push to syslog server. In my case, I want to push all the information from syslog server to ELK.

So, my question is,

How can the ELK read each folder from syslog server? So that, it will appears in different type at Kibana with Syslogserver IP address.

Thank You.

warkolm · April 4, 2017, 9:09am

Use the file input.

But you will want to put things in different indices

system · May 2, 2017, 9:09am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.