Extractor not working correctly.

[Lucky38i]

After checking out my stream I can see

But not the rest of the expected fields. If I select "All Field" and for example, select "Action" Nothing appears as I would expect. In turn this means I have no results in Grafana.

Currently Running:
ElasticSearch: v5.6.12
PfSense: 2.4.4-RELEASE-p1 (amd64)
Graylog: v2.4.7

[valowmfk]

Did you find a resolution to this yet? I'm having the same issue.

[valowmfk]

I actually got it figured out - I had to add the extractor for pfsense - I just used the one in the graylog marketplace.

[stu-gendron]

@mattklouda which extractor did you end up using, and did it totally replace this one?

[valowmfk]

@stu-gendron - I ended up using the one from the project, however I had to copy and paste it to notepad, save it as a .json, then paste from notepad in to the application. Then, it loaded. After that, I had data for about 24 hours and now I"m getting failed to parse errors, which I haven't looked in to yet.

[fahadalishah0102]

How i can install Cerebro on Ubuntu 18?