Can't receive the syslogs from Firewall

nimolvanpersien · August 4, 2017, 1:00pm

Hi all,
I have my firewall configured to send all logs to graylog but I can’t see them.
this is what I see in Input

Throughput / Metrics
1 minute average rate: 26 msg/s
Network IO: 11.6KB 0B (total: 2.1MB 0B )
Empty messages discarded: 0

input setting
allow_override_date: true
bind_address: 0.0.0.0
expand_structured_data: false
force_rdns: false
override_source:
port: 5140
recv_buffer_size: 262144
store_full_message: false

jochen · August 4, 2017, 1:25pm

Try using an absolute time range in your query and set the end to a timestamp some hours in the future.

Most probably the timestamps of your messages have the wrong timezone.

system · August 18, 2017, 1:26pm

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Issue with Syslog input UDP Graylog Central (peer support)	3	515	November 1, 2019
Don't receive syslog on graylog Graylog Central (peer support)	12	7819	August 9, 2018
Graylog inputs do not seem to be working Graylog Central (peer support)	5	2654	September 7, 2018
Throughput shows messages are comming but input is empty Graylog Central (peer support)	8	2388	April 21, 2020
Throughput but no data Graylog Central (peer support)	2	222	August 18, 2020

Can't receive the syslogs from Firewall

Related Topics