-
**Is your feature request related to a problem? Please describe.**
I saw the card regarding scrip installer, and I was wondering if we should make an Ansible playbook to accelerate the deploy process…
-
**Describe the bug**
After following all of the instructions in the README and installing the searches, visualizations, and dashboard.json files. When I view the World Heat Map I'm presented with thi…
-
Thanks for putting this together. I really appreciate it.
I am getting _grokparsefailure and_geoip_lookup_failure for a few different messages, like ICMPv6 and PIM messages. Is this normal? Can I f…
-
The Suricata fields are not mapped. I´m on OPNsense 19.7.4.
The Firewall logs are correct mapped and working fine. Here are two screenshots.
Used the git checkout from today (13.09.2019)
![surica…
-
Hi, deploying your PELK in Docker environment and have some trouble to get the suricata feedback correct. (using ELK 7.4.0, pfsense 2.4.4-RELEASE-p3
**in pfsense**
- [Status/system Logs/settings]…
-
Do you plan om migrating to the Elastic Common Schema (https://www.elastic.co/guide/en/ecs/current/index.html) in the near future?
-
Would it also be able to parse Openvpn logs in these confs? I would like to monitor (from a Openvpn server) failed login attempts (usernames) also along with country of these failed logins (geoip)
…
-
Any plan to release a new updated version of configs for the latest ek stash? Especially on the x-pack side. I found that after upgrading to latest version, the old config I had seems to cause all kin…
-
Current configuration does not recognize GeoIP fields...working to update.
-
While trying to start fresh i've encountered some grok errors. It appears to me based on tags that the error occurs in 10-pf.conf. Below is an event without matching 05-syslog.conf. I'm not sure how t…