UTMStack icon indicating copy to clipboard operation
UTMStack copied to clipboard
verified publisher icon utmstack

Add support for OPNsense log collection

Open ccesario opened this issue 6 months ago • 0 comments

Describe the feature

Add native support for OPNsense log collection in UTMStack.

While UTMStack currently supports pfSense, the OPNsense firewall is gaining significant traction in both enterprise and open-source communities. The collector support would ideally include structured parsing of Syslog messages, proper categorization of events, and dashboard/report compatibility — similar to the existing pfSense integration.

Use Case

Many users have adopted OPNsense as a preferred firewall solution due to its active development, modern interface, and advanced features. However, the lack of native integration with UTMStack limits visibility and centralized monitoring.

By adding support for OPNsense logs, administrators would be able to monitor firewall events, authentication attempts, traffic patterns, and potential threats in a single SIEM dashboard

Proposed Solution

No response

Other Information

https://github.com/secdoc/OPNsense-24.7-Graylog-Grok-Patterns https://github.com/orgs/utmstack/discussions/493

Acknowledgements

  • [ ] I may be able to implement this feature request
  • [ ] This feature might incur a breaking change

ccesario avatar Jun 20 '25 19:06 ccesario