Sidecar to Suricata

zapa11 · November 14, 2023, 11:03am

Hello guys,

I am trying to use the sidecar to collect suricata-alerts.json and suricata-nsm.json files . Every time i try to get them, the Graylog is showing me empty messages

I also tried with IdsTower , where i can configure Filebeat to send me the json files . Again , i am only receiving empty messages.

Is there anything i need to add to Graylog to parse json ?
Is there a way to get suricata logs with sidecar? please guide.

Best Regards,
Radu

gsmith · November 21, 2023, 5:02am

Hey @zapa11

Can you show you configuration made?

system · December 5, 2023, 5:03am

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Sidecar not receiving messages Graylog Central (peer support) sidecar	2	1018	March 4, 2020
[Graylog sidecar] Winlogbeat working but no logs can be retrieved in Graylog GUI Graylog Central (peer support) sidecar , winlogbeat	6	1286	February 9, 2023
Graylog 3, Sidecar (1.0.1) WinLogEvt - No messages Graylog Central (peer support) sidecar , filebeat-windows , winlogbeat	4	1361	May 17, 2019
Graylog Sidecar 1..5.2 - no messages in Graylog Graylog Central (peer support) sidecar	3	30	September 25, 2024
Graylog Sidecar Graylog Central (peer support) sidecar , nxlog , filebeat-windows , winlogbeat , nodatanx	7	2308	May 21, 2020

Sidecar to Suricata

Related topics