Yes, the combination of LOGSTASH/ELASTICSEARCH/KIBANA has been a massive improvement for our datacenter. We literally have *everything* (syslog/http/haproxy/vpn/etc/etc) getting dumped into it. Being able to find the proverbial needle in the haystack for the past year with 0 effort has made tracing things down effortless. Even without proper indexing on pfsense logs it's still relatively easy to find what I'm looking for.
On Wednesday, May 14, 2014 2:40 PM, RB <[email protected]> wrote: > >Unfortunately no, I had to move off of pfSense for non-pfSense reasons >and haven't been chasing its data recently. I have, however, been >using ES + kibana in the IR world to reasonable success. _______________________________________________ List mailing list [email protected] https://lists.pfsense.org/mailman/listinfo/list
