Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

firewall logs with ipv6 addresses #11

Open
jbrundiers-frm opened this issue Dec 9, 2019 · 4 comments
Open

firewall logs with ipv6 addresses #11

jbrundiers-frm opened this issue Dec 9, 2019 · 4 comments

Comments

@jbrundiers-frm
Copy link

graylog recognizes and filters ipv4 addresses correctly. but ipv6 addresses are not extracted or recognized from log messages.

Is this error known or does the error only occur during my installation ?
@jbrundiers
Copy link

I believe that the grok pattern is not working correct.
Does anyone know a working grok pattern for ipv6 ?

@lephisto
Copy link
Owner

known issue, working on it. if you already have a fix for it, submit a pr or send me the required changes to the grokpattern, that'd be awesome.

@jbrundiers
Copy link

I found Gork patterns here:
[https://github.com/a3ilson/pfelk/tree/master/conf.d/patterns]
This patterns are working with IPv6.

@lephisto
Copy link
Owner

I just started renovating everything and will include proper IPV6 support within the next few days..

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@lephisto @jbrundiers @jbrundiers-frm