Hi, just installed
Graylog 3.1.0+aa5175e and it works great.
I’ve been dealing with a few issues related to sending DNS log with NXLOG. I’ve been searching for solutions on issue with
empty mandatory "short_message" field but everything I tried was uneffective.
So, I switched to Packetbeat as everyone seems suggesting. The environment is Windows 2012r2 and Packetbeat is on the latest version. Its configuration file is approved by the verification command
.\packetbeat.exe test config .\packetbeat.yml -e and it outputs a good
With this in my pocket, I created a new Graylog Beats input sitting on port 5046, with no TLS, but when I run it, in the log I see:
2019-08-28T14:00:48.992+02:00 ERROR [AbstractTcpTransport] Error in Input [Beats/5d666cae63b2cc0299c9655f] (channel [id: 0x92b66b48, L:/10.5.1.5:5046 ! R:/10.5.1.10:61999]) (cause io.netty.handler.codec.DecoderException: java.lang.IllegalStateException: Unknown beats protocol version: 69)
I’ve been googling on this for days now…can somebody helps?