Send Suricata alerts to pfsense firewall log option

  • Hi I’ve been running Suricata for a long time & now I’m experimenting with ELK (Elasticsearch,Logstash & Kibana) I’ve found that the configurations for getting this working vary widely everyone does things different one idea I’m trying is to use the pfsense ‘Send log messages to a remote syslog server’ rather than Banyard2.

    I managed to get my Suricata alerts to writing logs to the Pfsense system log’s but I can’t get them to appear in the Firewall log is it possible what combo of settings would get this done?

Log in to reply