Tag Archives: Logstash

Collecting ONSSI Ocularis CS RC-C Logs with nxlog / Logstash / Elasticsearch / Kibana3

Edit: This post is pretty old and Elasticsearch/Logstash/Kibana have evolved a lot since it was written. That’s quite a title. I work with an ONSSI Ocularis CS setup. Originally installed with NetDVMS, but upgraded to RC-C. This post builds upon a couple earlier posts http://www.ragingcomputer.com/2014/02/logstash-elasticsearch-kibana-for-windows-event-logs http://www.ragingcomputer.com/2014/02/sending-windows-event-logs-to-logstash-elasticsearch-kibana-with-nxlog What does all this mean? This heavily redacted screenshotContinue reading “Collecting ONSSI Ocularis CS RC-C Logs with nxlog / Logstash / Elasticsearch / Kibana3”

Sending Windows Event Logs to Logstash / Elasticsearch / Kibana with nxlog

Edit: This post is pretty old and Elasticsearch/Logstash/Kibana have evolved a lot since it was written. Part 3 of 4 – Part 1 – Part 2 – Part 4 This is a continuation of http://www.ragingcomputer.com/2014/02/logstash-elasticsearch-kibana-for-windows-event-logs Again, I took a lot of inspiration from http://sysxfit.com/blog/2013/07/18/logging-with-logstash-part-3/ The nxlog reference manual is surprisingly well written with excellent examples.Continue reading “Sending Windows Event Logs to Logstash / Elasticsearch / Kibana with nxlog”

Securing Elasticsearch / Kibana with nginx

Edit: This post is pretty old and Elasticsearch/Logstash/Kibana have evolved a lot since it was written. Part 2 of 4 – Part 1 – Part 3 – Part 4 This is a continuation from http://www.ragingcomputer.com/2014/02/logstash-elasticsearch-kibana-for-windows-event-logs The great folks working on Kibana have been so awesome as to provide an example nginx configuration! https://github.com/elasticsearch/kibana/blob/master/sample/nginx.conf Kibana promptingContinue reading “Securing Elasticsearch / Kibana with nginx”

Logstash / Elasticsearch / Kibana for Windows Event Logs

Edit: This post is pretty old and Elasticsearch/Logstash/Kibana have evolved a lot since it was written. Part 1 of 4 – Part 2 – Part 3 – Part 4 Have you heard of Logstash / ElasticSearch / Kibana? I don’t wanna oversell it, but it’s AMAZING! I’ll start with a screenshot. You know you wantContinue reading “Logstash / Elasticsearch / Kibana for Windows Event Logs”