Actually i see data received in Graylog Web Interface - but it shows like the "Source" field is not the actual ip adress of the server sending the Syslog data, but source represents some function on the server, and not the server IP , so i am not able to do filtering based on Source (IP) - any rules that can by set up en graylog to make sure the Source is the IP adress of the server?
Thanks. On Wednesday, December 14, 2016 at 3:10:16 PM UTC+1, Benbrahim Anass wrote: > > Hi > make sure your logs are comming to the graylog by recieving them first on > syslog > cheers > > Anas > > Le mercredi 14 décembre 2016 15:05:51 UTC+1, [email protected] a écrit : >> >> >> Hi, >> >> Syslog data is not received correctly by Graylog - as it can not show >> data from specific source. >> >> If I do a Wireshark trace on the Graylog server, I see the Syslog >> messages are sent correctly from specific server to the Graylog server - >> but data is not shown in Graylog web interface ? Any ideas? >> >> Running Graylog 2.1.2 on Ubuntu 14.04 >> >> Thanks. >> >> >> -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/184c951d-4ebc-49bc-9cff-c1d75c519e85%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
