Re: [graylog2] Geolocation not working
Bingo!!! Thats why!! It's on a lab test server using intranet ip's. Thanks!!! On Thursday, June 30, 2016 at 4:13:06 PM UTC-4, Jason Haar wrote: > > > On Fri, Jul 1, 2016 at 4:45 AM, George Nussbaum > wrote: > >> However, it's not picking up my IP's and setting latitude and longitude >> for them. I have field types of c-ip, s-ip and X-Forwarded-For set up so >> I'm confused as to why it's not working. > > > So you are seeing records with fields of s-ip which contain IP addresses, > but you're not seeing "s-ip_geolocation" being "magically" created? > Certainly odd. Are you sure the IP addresses are IPs? eg maybe they have > spaces at the beginning or end? > > Also, are they Internet IPs or Intranet IPs? The latter (ie 10/8, > 192.168/16, etc) are not in the GeoIP database, so will not ever trigger > geolocation records > > > -- > Cheers > > Jason Haar > Information Security Manager, Trimble Navigation Ltd. > Phone: +1 408 481 8171 > PGP Fingerprint: 7A2E 0407 C9A6 CAF6 2B9F 8422 C063 5EBB FE1D 66D1 > -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to graylog2+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/b9b1d41d-1eaf-4dd9-b0d4-8cb33802d526%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
Re: [graylog2] Geolocation not working
On Fri, Jul 1, 2016 at 4:45 AM, George Nussbaum wrote: > However, it's not picking up my IP's and setting latitude and longitude > for them. I have field types of c-ip, s-ip and X-Forwarded-For set up so > I'm confused as to why it's not working. So you are seeing records with fields of s-ip which contain IP addresses, but you're not seeing "s-ip_geolocation" being "magically" created? Certainly odd. Are you sure the IP addresses are IPs? eg maybe they have spaces at the beginning or end? Also, are they Internet IPs or Intranet IPs? The latter (ie 10/8, 192.168/16, etc) are not in the GeoIP database, so will not ever trigger geolocation records -- Cheers Jason Haar Information Security Manager, Trimble Navigation Ltd. Phone: +1 408 481 8171 PGP Fingerprint: 7A2E 0407 C9A6 CAF6 2B9F 8422 C063 5EBB FE1D 66D1 -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to graylog2+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/CAFChrgK%3D9AgLgJCQnsvd%2B3X%2BFVD%2B6g5HMJYFzEvH2AhRgyHcog%40mail.gmail.com. For more options, visit https://groups.google.com/d/optout.
[graylog2] Geolocation not working
Hello, I just set up geolocation in graylog. I read through the documentation and set up everything as stated. I even ran the test using nc -w0 <<< '8.8.8.8' and that worked fine. However, it's not picking up my IP's and setting latitude and longitude for them. I have field types of c-ip, s-ip and X-Forwarded-For set up so I'm confused as to why it's not working. Any ideas? -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to graylog2+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/2d1ff9ad-c0ae-4d65-941e-64408e78f94c%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
