-
Detected a 6.x and above cluster: the `type` event field won't be used to determine the document _type {:es_version=>7}
-
**Describe the bug**
The unbound dashboards show "Cannot read properties of undefined (reading 'table'). Captive dashboard just presents errors. I
The error seen when viewing the unbound dashboard…
-
**Describe the bug**
On a fresh scripted install of pfelk on a Debian 10 VM, I'm seeing an error for inbound data, it's being tagged with _grokparsefailure and the corresponding dashboards are not po…
-
Hello,
I am using pfelk v6 and I found if Haproxy Frontend is TCP, it can not parse the log and add _grokparseerror tag to it. If frontend is HTTP all is fine. Then I edited GROK pattern and found wh…
-
Hi guys, appreciate your project development, is there any chance you can include pfblocker ng dashboards? Thank you
-
First, thanks for the good job !
I was able to set it up easyl on my existing ELK stack without any trouble, great doc !
The only stuff which is not working is the import of the firewall.ndjson da…
-
hello,
I have configured a nginx as a waf (modsecurity)
I installed filebeat on the server configure all things good.
On PFELK i receive logs but i need a help, (i have the content of grok) b…
-
**Describe the bug**
The log changes in 21.1.9 broke the firewall grok parsing, now getting [ "firewall", "_grokparsefailure" ] in my tags from Opnsense running 21.1.9. Trying to update the Grok pat…
-
hello @a3ilson ,
i think that to consolidate the system (PFELK) you can add wazuh on it,
by that you will centralized pfsense log but also if it's a needy to add a lot of information from other se…
-
**Describe the bug**
Syslog-NG can't connect to ELK server: `May 31 18:49:03 pPfSense syslog-ng[84145]: Syslog connection failed; fd='25', server='AF_INET(192.168.178.83:5544)', error='Operation time…