Not sure whats going on .... but the devices are showing up as source ipaddresses instead of as hostnames i set force rdns in the conf, and i tested my reverse dns and i fixed everything so its matched up rdns vs fwddns and still not working ...
i have set force_syslog_rdns = true but that didn't help Graylog server 1.2.1 [root@GrayLog2 ~]# host 172.16.10.11 11.10.16.172.in-addr.arpa domain name pointer TEST-1. [root@GrayLog2 ~]# nslookup TEST-1 Server: 172.16.0.252 Address: 172.16.0.252#53 Name: TEST-1 Address: 172.16.10.11 [root@GrayLog2 ~]# host TEST-1 UTS450-1 has address 172.16.10.11 [root@GrayLog2 ~]# nslookup TEST-1 Server: 172.16.0.252 Address: 172.16.0.252#53 Name: TEST-1 Address: 172.16.10.11 -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to graylog2+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/fbd07426-c48b-43c7-bba3-f7530f2ffbdb%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
