Skip to content
/ homelab-logging Public

Home to configuration files for combining pfSense logs with graylog and grafana

1 star 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

SYN-tactic/homelab-logging

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
grafana
grafana
 
 
graylog
graylog
 
 
.docker-compose.yaml.swp
.docker-compose.yaml.swp
 
 
.env-example
.env-example
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
docker-compose.yaml
docker-compose.yaml
 
 

Repository files navigation

This contains logic needed for running a logging system on my local network.

Steps for making sure this works:

  • Open up the needed ports. Make sure they only accept connections from the local network.
  • Make sure your .env file is setup with a password for Graylog.
  • run docker-compose up -d
  • Make sure that pfSense is sending its logs to your Graylog instance, most likely using syslog.
  • Add an input into Graylog that accepts the logs from PFSense
  • Load the extractors and the content pack into Graylog.
  • Ensure that the elasticsearch instance is parsing the data-lenght field as the type 'long'
  • Add a new data source in grafana that grabs data from the elasticsearch instance (the url will be http://elasticsearch:9002 with the default config here)
  • Load the Grafana dashboard configuration

Sources I used for help with this:

About

Home to configuration files for combining pfSense logs with graylog and grafana

Resources

Readme
Activity

Stars

1 star

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published