How to add pfsense input into graylog. what configuration should be done on pfsense and graylog

adiya_v · September 6, 2023, 5:22am

Give steps , and extractors also.

Arie · September 7, 2023, 10:00am

Syslog is default on pfsense,

You could enable that and sens those logs tot graylog using a syslog input.
Basically extractors are only needed when you want tot extract specific data to monitor on that.

Good Luck.

adiya_v · September 7, 2023, 12:58pm

for fortinet and sophos , what needs to be done on graylog and frotinet and sophos.

Arie · September 7, 2023, 6:15pm

On Sophos create an output @ System Services >> Log Settings

Look at their documentation for more information like this one:

On Graylog create a syslog input at the default port or one to your likings
How to use Graylog as a Syslog Server.

For Fortigate >> Graylog as a starting point, Fortigate seems buggi, search for topics and solutions on that on this forum:
https://tungle.ca/?p=2819

adiya_v · September 8, 2023, 8:03am

On sophos firewall what needs to be enabled, can you send the configuration .

Arie · September 11, 2023, 7:21am

On Sophos XG it is like in this picture, adust the settings to your situation.

Topic		Replies	Views
What configuration should be done on sophos and graylog to get logs from sophos Graylog Central (peer support)	9	1614	December 8, 2023
Graylog and Sophos XG Graylog Central (peer support)	4	1184	March 30, 2024
Log can received from firewall but cannot show in search Graylog Central (peer support)	5	284	September 1, 2022
Pfsense Syslog issue Graylog Central (peer support)	16	3598	June 16, 2020
Pfsense Syslog Input Not Working Graylog Central (peer support)	2	1052	September 28, 2020

How to add pfsense input into graylog. what configuration should be done on pfsense and graylog

Related topics