Not sure whats going on .... but the devices are showing up as source ipaddresses instead of as hostnames i set force rdns in the conf, and i tested my reverse dns and i fixed everything so its matched up rdns vs fwddns and still not working ...
i have set force_syslog_rdns = true but that didn't help Graylog server 1.2.1 [root@GrayLog2 ~]# host 172.16.10.11 11.10.16.172.in-addr.arpa domain name pointer TEST-1. [root@GrayLog2 ~]# nslookup TEST-1 Server: 172.16.0.252 Address: 172.16.0.252#53 Name: TEST-1 Address: 172.16.10.11 [root@GrayLog2 ~]# host TEST-1 UTS450-1 has address 172.16.10.11 [root@GrayLog2 ~]# nslookup TEST-1 Server: 172.16.0.252 Address: 172.16.0.252#53 Name: TEST-1 Address: 172.16.10.11 -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/fbd07426-c48b-43c7-bba3-f7530f2ffbdb%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
