opn-repo icon indicating copy to clipboard operation
opn-repo copied to clipboard

Published 20 hours ago verified publisher icon mimugmail

Graylog

Open mihakralj opened this issue 4 years ago • 4 comments

Now that we have MongoDB and Elasticsearch in the repo, should we add Graylog for log filtering and parsing?

I never put Graylog on BSD, but it looks doable: https://charliepitkin.com/install-graylog-on-freebsd-10-3/

mihakralj avatar Jan 31 '21 09:01 mihakralj

It seems there is an up2date port. I added it to my build-scripts, lets see :)

The people always ask the wrong questions. Ofter I hear, why would I install ELK on a Firewall? Instead, they should ask themselves, when you want the most secure ELK, why not spin up an internal OPNsense VM and use it as ELK? :P

mimugmail avatar Feb 02 '21 05:02 mimugmail

@mihakralj I added Graylog some time ago, currently at 4.0.5 Do you want to have a look at the pkg to check if it's worth building a plugin?

mimugmail avatar Mar 23 '21 20:03 mimugmail

Ok, I am on it this weekend. Need to distract myself and stop tinkering with stuff I already PR-ed. I heard I am annoying reviewers... 😉

mihakralj avatar Apr 03 '21 22:04 mihakralj

I had a look too right now, seems the pkg is just the UI part, so you have to touch all stuff like elastic. Thought it would be a bit easier :/

mimugmail avatar Apr 12 '21 09:04 mimugmail