Trouble with pipeline rule #1
Comments
|
Change setting "Message Processors Configuration". The order in 1° place is
|
|
@mips81 may god bless your soul |
|
@mips81 The correct order will be: |
|
This fixed my issue too. Thanks! |
|
I am pleased to know that you solved the problem. |
|
This also fixed my problem, I recommend adding this to the installation guide. |
|
I might have an Issue, i don't understand. Processor Order is fine, I get src_ip_ fields filled. Grafana Barghraphs / Histogram show Location Infos. What's (imho) missing is the conversion to src_location to enable grafana worldmap panel to read it. ES 6.8.4 (happens in 6.8.3 as well). |
|
Someone made elasticsearch 6.x template and greylog 3 content pack. This repositories works Elasticsearch 5.x and graylog 2.x. Go to https://github.com/devopstales/pfsense-graylog and test. |
|
Oh yeah, i'm probably in a wrong repo. I have that devopstales stuff running. nevermind. |
Hello,
First of all, many thanks for the great job.
I have one question about Pipeline rule:
Could you please explain me the following line ?
let source_timestamp = parse_date(substring(to_string(now("America/Habana")),0,23), "yyyy-MM-dd'T'HH:mm:ss.SSS");
In my Pipeline statistics, no message is matching the rule. It's probably the reason I see nothing in my Grafana dashboard.
Many thanks.
The text was updated successfully, but these errors were encountered: