Completely edited and re-exported. Includes an Input with an extractor, therefore:
- Create Indexes
- Copy service-names-port-numbers.csv and GeoLite2-City.mmdb to config folder (/usr/share/graylog/data/config/)
- Activate Geo IP DB
- Install this content pack
- Verify config
- Update processor order
- Configure pfSense to send logs
- Profit??!?!
All credit to Jake Stride https://github.com/jstride/graylog-pfsense-content-pack