pfsense syslog to azure sentinel
-
i want to send my pfsense syslog to azure sentinel. is the a packages whe i can change the syslog format to CEF.
i see the syslog in azure sentinal but the format ist not good for azure sentinal.
-
In 2.5 there are two choices of log format:
https://docs.netgate.com/pfsense/en/latest/monitoring/logs/settings.html#global-log-settingsIn 2.4.5 though you cannot change the log format.
Steve
-
@thomaslauer I've written a guide on the Microsoft Tech Community on how to bring in your pfSense logs into Azure Sentinel using Logstash.
-
That message appears to have been removed....
-
@stephenw10 Yeah for some reason it's not showing on the Tech Community for public viewing anymore, I'm not sure why...
You can find more information about this project on my GitHub.