VMware NSX Firewall Logging with Logstash

October 24, 2014 less than 1 minute read

So the past day or so I have been working on getting some good detail from my NSX Edge’s (ESG and DLR) and I have been able to get them working very well. The Kibana dashboard looks great too. :) So I wanted to share this out with anyone else who may be looking at doing the same thing or just needing a way to get useful information out of NSX in regards to firewall activity. I am also working on some of the other logging facilities within NSX and will share those once I get those tidied up.

Below is the code you will need to get started in setting up your logstash.conf file.

And here is a quick dashboard view for now.

Screen Shot 2014-10-24 at 5.20.52 PM

Enjoy!

Share on

Twitter Facebook LinkedIn

Searching for the Source(s) of Truth in Holistic Automation

July 1, 2024
9 minute read

The Source of Truth (SoT) concept has become a cornerstone for achieving holistic automation in the ever-evolving IT and network management landscape. As org...

Transforming IT Operations - The Rise of Infrastructure Automation Consulting

June 29, 2024
6 minute read

As IT environments grow in complexity and scale, efficiently managing these intricate systems has become a critical challenge for many businesses. This is wh...

NFD24 - DriveNets

March 2, 2021
2 minute read

Recently I had the privilege to attend NFD 24 in which DriveNets presented. I had never heard of them until this event. Which I am shaming myself for because...

Ubuntu 20.04 - cloud-init Gotchas

August 25, 2020
1 minute read

Recently while working on my latest Packer Templates I ran into an issue with Ubuntu 20.04. The issue was related to cloud-init not being able to grow the ro...

Larry Smith Jr.