How to add pfsense input into graylog. what configuration should be done on pfsense and graylog

adiya_v · September 6, 2023, 5:22am

Give steps , and extractors also.

Arie · September 7, 2023, 10:00am

Syslog is default on pfsense,

You could enable that and sens those logs tot graylog using a syslog input.
Basically extractors are only needed when you want tot extract specific data to monitor on that.

Good Luck.

adiya_v · September 7, 2023, 12:58pm

for fortinet and sophos , what needs to be done on graylog and frotinet and sophos.

Arie · September 7, 2023, 6:15pm

On Sophos create an output @ System Services >> Log Settings

Look at their documentation for more information like this one:

On Graylog create a syslog input at the default port or one to your likings
How to use Graylog as a Syslog Server.

For Fortigate >> Graylog as a starting point, Fortigate seems buggi, search for topics and solutions on that on this forum:
https://tungle.ca/?p=2819

adiya_v · September 8, 2023, 8:03am

On sophos firewall what needs to be enabled, can you send the configuration .

Arie · September 11, 2023, 7:21am

On Sophos XG it is like in this picture, adust the settings to your situation.

system · September 25, 2023, 7:22am

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
What configuration should be done on sophos and graylog to get logs from sophos Graylog Central (peer support)	9	975	December 8, 2023
Graylog + pfSense + Snort(and all other Firewalllogs) Graylog Add-ons	2	1525	June 27, 2022
Pfsense logs to graylogs Graylog Central (peer support)	4	7906	March 14, 2017
Graylog Sophos XG Extractors Other Solutions other_solutions	1	2444	January 6, 2024
Extractors for pfSense Graylog Add-ons	4	5427	July 19, 2017

How to add pfsense input into graylog. what configuration should be done on pfsense and graylog

Related Topics