├── LICENSE ├── README.md ├── bonus ├── 17-nginx-filter.conf ├── 18-filter-audit.conf ├── filebeat.yml.txt └── patterns │ ├── audit │ └── nginx ├── docs ├── Configuring_Remote_Logging_using_rsyslog_in_CentOS_RHEL___The_Geek_Diary.pdf ├── How_To_Install_Elasticsearch__Logstash__and_Kibana__Elastic_Stack__on_Ubuntu_18.04___DigitalOcean.pdf ├── How_To_Install_Java_with_Apt_on_Ubuntu_18.04___DigitalOcean.pdf ├── How_to_Configure_rsyslog_Server_to_Accept_Logs_via_SSL_TLS___The_Geek_Diary.pdf └── Needing_contents_of__opt_zimbra_log_mailbox.log_to_send_to_remote_syslog_-_Zimbra_Forums.pdf ├── rsyslog-elastic ├── elasticsearch │ ├── .elasticsearch.keystore.initial_md5sum │ ├── elasticsearch-plugins.example.yml │ ├── elasticsearch.yml │ ├── jvm.options │ ├── log4j2.properties │ ├── role_mapping.yml │ ├── roles.yml │ ├── users │ └── users_roles ├── filebeat │ ├── fields.yml │ ├── filebeat.reference.yml │ ├── filebeat.yml │ └── modules.d │ │ ├── activemq.yml.disabled │ │ ├── apache.yml.disabled │ │ ├── auditd.yml.disabled │ │ ├── aws.yml.disabled │ │ ├── awsfargate.yml.disabled │ │ ├── azure.yml.disabled │ │ ├── barracuda.yml.disabled │ │ ├── bluecoat.yml.disabled │ │ ├── cef.yml.disabled │ │ ├── checkpoint.yml.disabled │ │ ├── cisco.yml.disabled │ │ ├── coredns.yml.disabled │ │ ├── crowdstrike.yml.disabled │ │ ├── cyberarkpas.yml.disabled │ │ ├── cylance.yml.disabled │ │ ├── elasticsearch.yml.disabled │ │ ├── envoyproxy.yml.disabled │ │ ├── f5.yml.disabled │ │ ├── fortinet.yml.disabled │ │ ├── gcp.yml.disabled │ │ ├── google_workspace.yml.disabled │ │ ├── haproxy.yml.disabled │ │ ├── ibmmq.yml.disabled │ │ ├── icinga.yml.disabled │ │ ├── iis.yml.disabled │ │ ├── imperva.yml.disabled │ │ ├── infoblox.yml.disabled │ │ ├── iptables.yml.disabled │ │ ├── juniper.yml.disabled │ │ ├── kafka.yml.disabled │ │ ├── kibana.yml.disabled │ │ ├── logstash.yml.disabled │ │ ├── microsoft.yml.disabled │ │ ├── misp.yml.disabled │ │ ├── mongodb.yml.disabled │ │ ├── mssql.yml.disabled │ │ ├── mysql.yml.disabled │ │ ├── mysqlenterprise.yml.disabled │ │ ├── nats.yml.disabled │ │ ├── netflow.yml.disabled │ │ ├── netscout.yml.disabled │ │ ├── nginx.yml.disabled │ │ ├── o365.yml.disabled │ │ ├── okta.yml.disabled │ │ ├── oracle.yml.disabled │ │ ├── osquery.yml.disabled │ │ ├── panw.yml.disabled │ │ ├── pensando.yml.disabled │ │ ├── postgresql.yml.disabled │ │ ├── proofpoint.yml.disabled │ │ ├── rabbitmq.yml.disabled │ │ ├── radware.yml.disabled │ │ ├── redis.yml.disabled │ │ ├── salesforce.yml.disabled │ │ ├── santa.yml.disabled │ │ ├── snort.yml.disabled │ │ ├── snyk.yml.disabled │ │ ├── sonicwall.yml.disabled │ │ ├── sophos.yml.disabled │ │ ├── squid.yml.disabled │ │ ├── suricata.yml.disabled │ │ ├── system.yml │ │ ├── threatintel.yml.disabled │ │ ├── tomcat.yml.disabled │ │ ├── traefik.yml.disabled │ │ ├── zeek.yml.disabled │ │ ├── zookeeper.yml.disabled │ │ ├── zoom.yml.disabled │ │ └── zscaler.yml.disabled ├── heartbeat │ ├── fields.yml │ ├── heartbeat.reference.yml │ ├── heartbeat.yml │ └── monitors.d │ │ ├── sample.http.yml.disabled │ │ ├── sample.icmp.yml.disabled │ │ ├── sample.tcp.yml.disabled │ │ └── zimbra.yml ├── kibana │ ├── kibana.yml │ └── node.options ├── logstash │ ├── conf.d │ │ ├── 02-beats-input.conf │ │ ├── 10-syslog-filter.conf │ │ └── 30-elasticsearch-output.conf │ ├── jvm.options │ ├── log4j2.properties │ ├── logstash-sample.conf │ ├── logstash.yml │ ├── pipelines.yml │ └── startup.options ├── nginx │ ├── fastcgi.conf │ ├── fastcgi_params │ ├── htpasswd.users │ ├── koi-utf │ ├── koi-win │ ├── mime.types │ ├── modules-enabled │ │ ├── 50-mod-http-geoip2.conf │ │ ├── 50-mod-http-image-filter.conf │ │ ├── 50-mod-http-xslt-filter.conf │ │ ├── 50-mod-mail.conf │ │ ├── 50-mod-stream.conf │ │ └── 70-mod-stream-geoip2.conf │ ├── nginx.conf │ ├── proxy_params │ ├── scgi_params │ ├── sites-available │ │ └── default │ ├── sites-enabled │ │ └── default │ ├── snippets │ │ ├── fastcgi-php.conf │ │ └── snakeoil.conf │ ├── uwsgi_params │ └── win-utf ├── rsyslog-certs │ ├── ca-key.pem │ ├── ca.pem │ ├── request.pem │ ├── rslclient-cert.pem │ ├── rslclient-key.pem │ ├── rslserver-cert.pem │ └── rslserver-key.pem ├── rsyslog-client.conf └── rsyslog-server.conf ├── screenshots ├── 01-dashboard.png ├── 02-status.png ├── 03-02-add-processor.png ├── 03-03-processor.png ├── 03-04-details-menu.png ├── 03-05-new-fields.png ├── 03-logstream.png ├── 04-create-pipeline.png ├── 05-zimbra-pipeline.png ├── 06-01-example-log-entry.png ├── 06-02-document-from-index.png ├── 06-03-document-add.png ├── 06-03-document-added.png ├── 06-04-grok-fail.png ├── 06-05-grok-fail-output.png ├── 06-test-pipeline.png ├── 10-observability-logs-stream.png ├── 10-observability-logs.png ├── 11-analytics-discover.png ├── 12-analytics-discover-search.png ├── 14-analytics-discover-log-detail-zimbra.png ├── 15-count-visualization.png ├── 16-create-visualization.png ├── 17-aggregation-based.png ├── 18-area.png ├── 19-saved-search-as-source.png ├── 20-visual-but-not-configured.png ├── 21-visualization-tab1.png ├── 21-visualization-tab2.png ├── 21-visualization-tab3.png ├── 23-new-dashboard.png ├── 24-result-in-dashboard.png ├── 25-discover.png ├── 28-selected.png ├── 29-line.png ├── 30-saved-search-as-source.png ├── 31-y.png ├── 32-x.png ├── 33-timeframe.png ├── 34-result-in-8.png ├── 34-result-line.png ├── 35-gauges.png ├── 36-simplestat-discover.png ├── 37-select-verify-field.png ├── 37b-grok-debugger.png ├── 38-gauge-visualization.png ├── 39-select-cpu-saved-search.png ├── 40-update-button.png ├── 41-percentage-format.png ├── 42-heartbeat.png ├── bonus-audit.jpg ├── bonus-nginx.jpg ├── redarrow.png ├── zimbra-logstack.dia └── zimbra-logstack.dia.png └── zimbra ├── rsyslog-certs ├── ca-key.pem ├── ca.pem ├── request.pem ├── rslclient-cert.pem ├── rslclient-key.pem ├── rslserver-cert.pem └── rslserver-key.pem ├── rsyslog.conf ├── rsyslog.d ├── 21-cloudinit.conf ├── 50-default.conf └── listen.conf └── sbin └── zimbra-simple-stat.sh /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/LICENSE -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/README.md -------------------------------------------------------------------------------- /bonus/17-nginx-filter.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/bonus/17-nginx-filter.conf -------------------------------------------------------------------------------- /bonus/18-filter-audit.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/bonus/18-filter-audit.conf -------------------------------------------------------------------------------- /bonus/filebeat.yml.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/bonus/filebeat.yml.txt -------------------------------------------------------------------------------- /bonus/patterns/audit: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/bonus/patterns/audit -------------------------------------------------------------------------------- /bonus/patterns/nginx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/bonus/patterns/nginx -------------------------------------------------------------------------------- /docs/Configuring_Remote_Logging_using_rsyslog_in_CentOS_RHEL___The_Geek_Diary.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/docs/Configuring_Remote_Logging_using_rsyslog_in_CentOS_RHEL___The_Geek_Diary.pdf -------------------------------------------------------------------------------- /docs/How_To_Install_Elasticsearch__Logstash__and_Kibana__Elastic_Stack__on_Ubuntu_18.04___DigitalOcean.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/docs/How_To_Install_Elasticsearch__Logstash__and_Kibana__Elastic_Stack__on_Ubuntu_18.04___DigitalOcean.pdf -------------------------------------------------------------------------------- /docs/How_To_Install_Java_with_Apt_on_Ubuntu_18.04___DigitalOcean.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/docs/How_To_Install_Java_with_Apt_on_Ubuntu_18.04___DigitalOcean.pdf -------------------------------------------------------------------------------- /docs/How_to_Configure_rsyslog_Server_to_Accept_Logs_via_SSL_TLS___The_Geek_Diary.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/docs/How_to_Configure_rsyslog_Server_to_Accept_Logs_via_SSL_TLS___The_Geek_Diary.pdf -------------------------------------------------------------------------------- /docs/Needing_contents_of__opt_zimbra_log_mailbox.log_to_send_to_remote_syslog_-_Zimbra_Forums.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/docs/Needing_contents_of__opt_zimbra_log_mailbox.log_to_send_to_remote_syslog_-_Zimbra_Forums.pdf -------------------------------------------------------------------------------- /rsyslog-elastic/elasticsearch/.elasticsearch.keystore.initial_md5sum: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/elasticsearch/.elasticsearch.keystore.initial_md5sum -------------------------------------------------------------------------------- /rsyslog-elastic/elasticsearch/elasticsearch-plugins.example.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/elasticsearch/elasticsearch-plugins.example.yml -------------------------------------------------------------------------------- /rsyslog-elastic/elasticsearch/elasticsearch.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/elasticsearch/elasticsearch.yml -------------------------------------------------------------------------------- /rsyslog-elastic/elasticsearch/jvm.options: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/elasticsearch/jvm.options -------------------------------------------------------------------------------- /rsyslog-elastic/elasticsearch/log4j2.properties: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/elasticsearch/log4j2.properties -------------------------------------------------------------------------------- /rsyslog-elastic/elasticsearch/role_mapping.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/elasticsearch/role_mapping.yml -------------------------------------------------------------------------------- /rsyslog-elastic/elasticsearch/roles.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/elasticsearch/roles.yml -------------------------------------------------------------------------------- /rsyslog-elastic/elasticsearch/users: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /rsyslog-elastic/elasticsearch/users_roles: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/fields.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/fields.yml -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/filebeat.reference.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/filebeat.reference.yml -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/filebeat.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/filebeat.yml -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/activemq.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/activemq.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/apache.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/apache.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/auditd.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/auditd.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/aws.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/aws.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/awsfargate.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/awsfargate.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/azure.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/azure.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/barracuda.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/barracuda.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/bluecoat.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/bluecoat.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/cef.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/cef.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/checkpoint.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/checkpoint.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/cisco.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/cisco.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/coredns.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/coredns.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/crowdstrike.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/crowdstrike.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/cyberarkpas.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/cyberarkpas.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/cylance.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/cylance.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/elasticsearch.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/elasticsearch.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/envoyproxy.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/envoyproxy.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/f5.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/f5.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/fortinet.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/fortinet.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/gcp.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/gcp.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/google_workspace.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/google_workspace.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/haproxy.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/haproxy.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/ibmmq.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/ibmmq.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/icinga.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/icinga.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/iis.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/iis.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/imperva.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/imperva.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/infoblox.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/infoblox.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/iptables.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/iptables.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/juniper.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/juniper.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/kafka.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/kafka.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/kibana.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/kibana.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/logstash.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/logstash.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/microsoft.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/microsoft.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/misp.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/misp.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/mongodb.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/mongodb.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/mssql.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/mssql.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/mysql.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/mysql.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/mysqlenterprise.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/mysqlenterprise.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/nats.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/nats.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/netflow.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/netflow.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/netscout.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/netscout.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/nginx.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/nginx.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/o365.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/o365.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/okta.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/okta.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/oracle.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/oracle.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/osquery.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/osquery.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/panw.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/panw.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/pensando.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/pensando.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/postgresql.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/postgresql.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/proofpoint.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/proofpoint.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/rabbitmq.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/rabbitmq.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/radware.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/radware.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/redis.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/redis.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/salesforce.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/salesforce.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/santa.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/santa.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/snort.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/snort.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/snyk.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/snyk.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/sonicwall.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/sonicwall.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/sophos.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/sophos.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/squid.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/squid.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/suricata.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/suricata.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/system.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/system.yml -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/threatintel.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/threatintel.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/tomcat.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/tomcat.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/traefik.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/traefik.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/zeek.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/zeek.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/zookeeper.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/zookeeper.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/zoom.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/zoom.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/filebeat/modules.d/zscaler.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/filebeat/modules.d/zscaler.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/heartbeat/fields.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/heartbeat/fields.yml -------------------------------------------------------------------------------- /rsyslog-elastic/heartbeat/heartbeat.reference.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/heartbeat/heartbeat.reference.yml -------------------------------------------------------------------------------- /rsyslog-elastic/heartbeat/heartbeat.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/heartbeat/heartbeat.yml -------------------------------------------------------------------------------- /rsyslog-elastic/heartbeat/monitors.d/sample.http.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/heartbeat/monitors.d/sample.http.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/heartbeat/monitors.d/sample.icmp.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/heartbeat/monitors.d/sample.icmp.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/heartbeat/monitors.d/sample.tcp.yml.disabled: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/heartbeat/monitors.d/sample.tcp.yml.disabled -------------------------------------------------------------------------------- /rsyslog-elastic/heartbeat/monitors.d/zimbra.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/heartbeat/monitors.d/zimbra.yml -------------------------------------------------------------------------------- /rsyslog-elastic/kibana/kibana.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/kibana/kibana.yml -------------------------------------------------------------------------------- /rsyslog-elastic/kibana/node.options: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/kibana/node.options -------------------------------------------------------------------------------- /rsyslog-elastic/logstash/conf.d/02-beats-input.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/logstash/conf.d/02-beats-input.conf -------------------------------------------------------------------------------- /rsyslog-elastic/logstash/conf.d/10-syslog-filter.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/logstash/conf.d/10-syslog-filter.conf -------------------------------------------------------------------------------- /rsyslog-elastic/logstash/conf.d/30-elasticsearch-output.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/logstash/conf.d/30-elasticsearch-output.conf -------------------------------------------------------------------------------- /rsyslog-elastic/logstash/jvm.options: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/logstash/jvm.options -------------------------------------------------------------------------------- /rsyslog-elastic/logstash/log4j2.properties: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/logstash/log4j2.properties -------------------------------------------------------------------------------- /rsyslog-elastic/logstash/logstash-sample.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/logstash/logstash-sample.conf -------------------------------------------------------------------------------- /rsyslog-elastic/logstash/logstash.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/logstash/logstash.yml -------------------------------------------------------------------------------- /rsyslog-elastic/logstash/pipelines.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/logstash/pipelines.yml -------------------------------------------------------------------------------- /rsyslog-elastic/logstash/startup.options: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/logstash/startup.options -------------------------------------------------------------------------------- /rsyslog-elastic/nginx/fastcgi.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/nginx/fastcgi.conf -------------------------------------------------------------------------------- /rsyslog-elastic/nginx/fastcgi_params: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/nginx/fastcgi_params -------------------------------------------------------------------------------- /rsyslog-elastic/nginx/htpasswd.users: -------------------------------------------------------------------------------- 1 | UserNameHere:$apr1$EQsUctEe$gKSrFpmbdn4tVqGxMrCCu1 2 | -------------------------------------------------------------------------------- /rsyslog-elastic/nginx/koi-utf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/nginx/koi-utf -------------------------------------------------------------------------------- /rsyslog-elastic/nginx/koi-win: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/nginx/koi-win -------------------------------------------------------------------------------- /rsyslog-elastic/nginx/mime.types: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/nginx/mime.types -------------------------------------------------------------------------------- /rsyslog-elastic/nginx/modules-enabled/50-mod-http-geoip2.conf: -------------------------------------------------------------------------------- 1 | /usr/share/nginx/modules-available/mod-http-geoip2.conf -------------------------------------------------------------------------------- /rsyslog-elastic/nginx/modules-enabled/50-mod-http-image-filter.conf: -------------------------------------------------------------------------------- 1 | /usr/share/nginx/modules-available/mod-http-image-filter.conf -------------------------------------------------------------------------------- /rsyslog-elastic/nginx/modules-enabled/50-mod-http-xslt-filter.conf: -------------------------------------------------------------------------------- 1 | /usr/share/nginx/modules-available/mod-http-xslt-filter.conf -------------------------------------------------------------------------------- /rsyslog-elastic/nginx/modules-enabled/50-mod-mail.conf: -------------------------------------------------------------------------------- 1 | /usr/share/nginx/modules-available/mod-mail.conf -------------------------------------------------------------------------------- /rsyslog-elastic/nginx/modules-enabled/50-mod-stream.conf: -------------------------------------------------------------------------------- 1 | /usr/share/nginx/modules-available/mod-stream.conf -------------------------------------------------------------------------------- /rsyslog-elastic/nginx/modules-enabled/70-mod-stream-geoip2.conf: -------------------------------------------------------------------------------- 1 | /usr/share/nginx/modules-available/mod-stream-geoip2.conf -------------------------------------------------------------------------------- /rsyslog-elastic/nginx/nginx.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/nginx/nginx.conf -------------------------------------------------------------------------------- /rsyslog-elastic/nginx/proxy_params: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/nginx/proxy_params -------------------------------------------------------------------------------- /rsyslog-elastic/nginx/scgi_params: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/nginx/scgi_params -------------------------------------------------------------------------------- /rsyslog-elastic/nginx/sites-available/default: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/nginx/sites-available/default -------------------------------------------------------------------------------- /rsyslog-elastic/nginx/sites-enabled/default: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/nginx/sites-enabled/default -------------------------------------------------------------------------------- /rsyslog-elastic/nginx/snippets/fastcgi-php.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/nginx/snippets/fastcgi-php.conf -------------------------------------------------------------------------------- /rsyslog-elastic/nginx/snippets/snakeoil.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/nginx/snippets/snakeoil.conf -------------------------------------------------------------------------------- /rsyslog-elastic/nginx/uwsgi_params: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/nginx/uwsgi_params -------------------------------------------------------------------------------- /rsyslog-elastic/nginx/win-utf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/nginx/win-utf -------------------------------------------------------------------------------- /rsyslog-elastic/rsyslog-certs/ca-key.pem: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/rsyslog-certs/ca-key.pem -------------------------------------------------------------------------------- /rsyslog-elastic/rsyslog-certs/ca.pem: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/rsyslog-certs/ca.pem -------------------------------------------------------------------------------- /rsyslog-elastic/rsyslog-certs/request.pem: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/rsyslog-certs/request.pem -------------------------------------------------------------------------------- /rsyslog-elastic/rsyslog-certs/rslclient-cert.pem: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/rsyslog-certs/rslclient-cert.pem -------------------------------------------------------------------------------- /rsyslog-elastic/rsyslog-certs/rslclient-key.pem: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/rsyslog-certs/rslclient-key.pem -------------------------------------------------------------------------------- /rsyslog-elastic/rsyslog-certs/rslserver-cert.pem: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/rsyslog-certs/rslserver-cert.pem -------------------------------------------------------------------------------- /rsyslog-elastic/rsyslog-certs/rslserver-key.pem: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/rsyslog-certs/rslserver-key.pem -------------------------------------------------------------------------------- /rsyslog-elastic/rsyslog-client.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/rsyslog-client.conf -------------------------------------------------------------------------------- /rsyslog-elastic/rsyslog-server.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/rsyslog-elastic/rsyslog-server.conf -------------------------------------------------------------------------------- /screenshots/01-dashboard.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/01-dashboard.png -------------------------------------------------------------------------------- /screenshots/02-status.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/02-status.png -------------------------------------------------------------------------------- /screenshots/03-02-add-processor.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/03-02-add-processor.png -------------------------------------------------------------------------------- /screenshots/03-03-processor.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/03-03-processor.png -------------------------------------------------------------------------------- /screenshots/03-04-details-menu.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/03-04-details-menu.png -------------------------------------------------------------------------------- /screenshots/03-05-new-fields.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/03-05-new-fields.png -------------------------------------------------------------------------------- /screenshots/03-logstream.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/03-logstream.png -------------------------------------------------------------------------------- /screenshots/04-create-pipeline.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/04-create-pipeline.png -------------------------------------------------------------------------------- /screenshots/05-zimbra-pipeline.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/05-zimbra-pipeline.png -------------------------------------------------------------------------------- /screenshots/06-01-example-log-entry.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/06-01-example-log-entry.png -------------------------------------------------------------------------------- /screenshots/06-02-document-from-index.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/06-02-document-from-index.png -------------------------------------------------------------------------------- /screenshots/06-03-document-add.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/06-03-document-add.png -------------------------------------------------------------------------------- /screenshots/06-03-document-added.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/06-03-document-added.png -------------------------------------------------------------------------------- /screenshots/06-04-grok-fail.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/06-04-grok-fail.png -------------------------------------------------------------------------------- /screenshots/06-05-grok-fail-output.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/06-05-grok-fail-output.png -------------------------------------------------------------------------------- /screenshots/06-test-pipeline.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/06-test-pipeline.png -------------------------------------------------------------------------------- /screenshots/10-observability-logs-stream.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/10-observability-logs-stream.png -------------------------------------------------------------------------------- /screenshots/10-observability-logs.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/10-observability-logs.png -------------------------------------------------------------------------------- /screenshots/11-analytics-discover.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/11-analytics-discover.png -------------------------------------------------------------------------------- /screenshots/12-analytics-discover-search.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/12-analytics-discover-search.png -------------------------------------------------------------------------------- /screenshots/14-analytics-discover-log-detail-zimbra.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/14-analytics-discover-log-detail-zimbra.png -------------------------------------------------------------------------------- /screenshots/15-count-visualization.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/15-count-visualization.png -------------------------------------------------------------------------------- /screenshots/16-create-visualization.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/16-create-visualization.png -------------------------------------------------------------------------------- /screenshots/17-aggregation-based.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/17-aggregation-based.png -------------------------------------------------------------------------------- /screenshots/18-area.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/18-area.png -------------------------------------------------------------------------------- /screenshots/19-saved-search-as-source.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/19-saved-search-as-source.png -------------------------------------------------------------------------------- /screenshots/20-visual-but-not-configured.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/20-visual-but-not-configured.png -------------------------------------------------------------------------------- /screenshots/21-visualization-tab1.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/21-visualization-tab1.png -------------------------------------------------------------------------------- /screenshots/21-visualization-tab2.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/21-visualization-tab2.png -------------------------------------------------------------------------------- /screenshots/21-visualization-tab3.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/21-visualization-tab3.png -------------------------------------------------------------------------------- /screenshots/23-new-dashboard.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/23-new-dashboard.png -------------------------------------------------------------------------------- /screenshots/24-result-in-dashboard.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/24-result-in-dashboard.png -------------------------------------------------------------------------------- /screenshots/25-discover.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/25-discover.png -------------------------------------------------------------------------------- /screenshots/28-selected.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/28-selected.png -------------------------------------------------------------------------------- /screenshots/29-line.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/29-line.png -------------------------------------------------------------------------------- /screenshots/30-saved-search-as-source.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/30-saved-search-as-source.png -------------------------------------------------------------------------------- /screenshots/31-y.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/31-y.png -------------------------------------------------------------------------------- /screenshots/32-x.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/32-x.png -------------------------------------------------------------------------------- /screenshots/33-timeframe.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/33-timeframe.png -------------------------------------------------------------------------------- /screenshots/34-result-in-8.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/34-result-in-8.png -------------------------------------------------------------------------------- /screenshots/34-result-line.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/34-result-line.png -------------------------------------------------------------------------------- /screenshots/35-gauges.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/35-gauges.png -------------------------------------------------------------------------------- /screenshots/36-simplestat-discover.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/36-simplestat-discover.png -------------------------------------------------------------------------------- /screenshots/37-select-verify-field.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/37-select-verify-field.png -------------------------------------------------------------------------------- /screenshots/37b-grok-debugger.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/37b-grok-debugger.png -------------------------------------------------------------------------------- /screenshots/38-gauge-visualization.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/38-gauge-visualization.png -------------------------------------------------------------------------------- /screenshots/39-select-cpu-saved-search.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/39-select-cpu-saved-search.png -------------------------------------------------------------------------------- /screenshots/40-update-button.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/40-update-button.png -------------------------------------------------------------------------------- /screenshots/41-percentage-format.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/41-percentage-format.png -------------------------------------------------------------------------------- /screenshots/42-heartbeat.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/42-heartbeat.png -------------------------------------------------------------------------------- /screenshots/bonus-audit.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/bonus-audit.jpg -------------------------------------------------------------------------------- /screenshots/bonus-nginx.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/bonus-nginx.jpg -------------------------------------------------------------------------------- /screenshots/redarrow.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/redarrow.png -------------------------------------------------------------------------------- /screenshots/zimbra-logstack.dia: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/zimbra-logstack.dia -------------------------------------------------------------------------------- /screenshots/zimbra-logstack.dia.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/screenshots/zimbra-logstack.dia.png -------------------------------------------------------------------------------- /zimbra/rsyslog-certs/ca-key.pem: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/zimbra/rsyslog-certs/ca-key.pem -------------------------------------------------------------------------------- /zimbra/rsyslog-certs/ca.pem: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/zimbra/rsyslog-certs/ca.pem -------------------------------------------------------------------------------- /zimbra/rsyslog-certs/request.pem: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/zimbra/rsyslog-certs/request.pem -------------------------------------------------------------------------------- /zimbra/rsyslog-certs/rslclient-cert.pem: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/zimbra/rsyslog-certs/rslclient-cert.pem -------------------------------------------------------------------------------- /zimbra/rsyslog-certs/rslclient-key.pem: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/zimbra/rsyslog-certs/rslclient-key.pem -------------------------------------------------------------------------------- /zimbra/rsyslog-certs/rslserver-cert.pem: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/zimbra/rsyslog-certs/rslserver-cert.pem -------------------------------------------------------------------------------- /zimbra/rsyslog-certs/rslserver-key.pem: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/zimbra/rsyslog-certs/rslserver-key.pem -------------------------------------------------------------------------------- /zimbra/rsyslog.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/zimbra/rsyslog.conf -------------------------------------------------------------------------------- /zimbra/rsyslog.d/21-cloudinit.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/zimbra/rsyslog.d/21-cloudinit.conf -------------------------------------------------------------------------------- /zimbra/rsyslog.d/50-default.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/zimbra/rsyslog.d/50-default.conf -------------------------------------------------------------------------------- /zimbra/rsyslog.d/listen.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/zimbra/rsyslog.d/listen.conf -------------------------------------------------------------------------------- /zimbra/sbin/zimbra-simple-stat.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zimbra/elastic-stack/HEAD/zimbra/sbin/zimbra-simple-stat.sh --------------------------------------------------------------------------------