Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [rsyslog]

rsyslog is an enterprise-ready replacement for the syslog daemon on Linux and other UNIX operating systems.

rsyslog is an enterprise-ready replacement for the syslog daemon on Linux and other UNIX operating systems.

It consists of an open source project with commercial addons such as the ability to log Windows events, as well as available support contracts.

681 questions
0
votes
1 answer

installing GlusterFS 3.7.5 on AWS AMI

I am trying to install Gluster 3.7.5 on Amazon Linux AMI but cannot get passed error Error: Package: glusterfs-libs-3.7.5-1.el7.x86_64 (glusterfs-epel) Requires: rsyslog-mmjsonparse Error: Package: glusterfs-3.7.5-1.el7.x86_64…
Eli
  • 427
  • 2
  • 7
  • 18
0
votes
1 answer

How do I watch local# to ensure messages are being sent to it?

I am trying to collect additional operation logging from my sftp server. I have added the following lines to /etc/ssh/sshd_config, as instructed by many posts on the internet: Subsystem sftp internal-sftp -l VERBOSE -f LOCAL6 Match Group sftponly …
Shiquemano
  • 31
  • 3
0
votes
1 answer

rsyslog convert json to text on the fly

I have application logging events in JSON format for later structured queries, etc. Now I have a task to log the same messages in plain text (CSV probably) and I really don't want to log each event twice in both formats. Is it possible to convert…
stimur
  • 894
  • 6
  • 11
0
votes
2 answers

Haproxy logging doesn't work. Does that have anything to do with csf?

Does Haproxy log every time a connection is made? I have followed instructions from other threads to set up logging via rsyslogd. Even though the files are created (haproxy.log,haproxy-info.log and haproxy-allbutinfo.log), no logs have been written…
RedGiant
  • 211
  • 3
  • 16
0
votes
1 answer

Rsyslog logging to rolled log instead of unrolled log

Forgive me if I am vague, but I am trying to keep this as secure as possible. I have a CentOS server setup as a central remote logging server. Servers have been sending their logs to this server for a few months now, with no issue. These log files…
David Allen
  • 145
  • 1
  • 7
0
votes
1 answer

Unable to log into a rsyslog filter using logger

Ubuntu 64 14.04 comes with rsyslog (7) built-in. I've added test.conf to /etc/rsyslog.d with the following line: :syslogtag,isequal,"test" /var/log/test.log I then restart rsyslog and log using logger: echo "hi there" | logger -t test I…
Assaf Lavie
  • 297
  • 1
  • 6
  • 17
0
votes
1 answer

How to select only specific log from records with imfile module?

We have a Logstash agent that writes its internal logs to a file in fixed format (a message written in a single row, here it's formatetd for readability): { :timestamp => "2015-08-20T18:24:07.458000+0300", :message => "SIGINT received.…
Aliaxander
  • 101
0
votes
1 answer

Use syslog service to capture data logged to a file not managed by syslog?

Some services (nginx, buildbot, et cetera) only support logging to a file. Is there a way to reliably capture these log messages using syslog and friends, so that the log message can be reflected in the system logs and/or forwarded to a log service…
Monica For CEO
  • 330
  • 1
  • 17
0
votes
1 answer

Rsyslog failed to start CentOS 6.6 Final

I'm getting the following error message when trying to run: service rsyslog restart # service rsyslog restart : command not foundlog: line 2: : command not foundlog: line 3: : command not foundlog: line 5: : command not foundlog: line 6: :…
jamesb7
  • 13
  • 1
  • 1
  • 5
0
votes
0 answers

Run a script if an error in syslog appears

Is it possible to run a shell script if a specified string is found in rsyslog 5.8.11? I couldn't find any examples so I tried this but it doesn't work: $Template MyAlert,":msg" :msg, contains, "ThisIsAnErrorMessage" ~ *.* ^/script.sh;MyAlert Can…
fips123
  • 361
  • 1
  • 5
  • 17
0
votes
2 answers

Send all linux logs to remote rsyslog and store in original file name

I know there are alot of topics like this one but i have a particular need: I need to send all the logs from linux servers to a central loggin server. Problem 1: On the central server i need to store the logs in the following…
Manea Dragosh
  • 1
  • 1
0
votes
1 answer

Restarting rsyslog for zimbra servers

I want to forward my zimbra.log to my log collector server. But Im quite worried about restarting rsyslog process because im not sure if it will affect the zimbra mta itself. Thanks,
Sympatiko
  • 73
  • 1
  • 5
0
votes
1 answer

All system logs lack end of message newlines

We have a curious issue where all logs in /var/log/ lack a trailing new-lines at the end of their messages, and instead contain an n, but the entire file is one 'line': Jun 4 10:18:54 host sshd[12468]: Accepted publickey for username from…
Mike
  • 175
  • 1
  • 10
0
votes
1 answer

Client rsyslog and server in the same machine Ubuntu 14.04

I am wondering if I can make Rsyslog to receive logs from my own IP, I just want to test that the configurations work, right now I dont have access to another PC or Server, just my PC, in few words I want to make a client and server in one computer…
AndyJRR
  • 11
  • 4
0
votes
0 answers

Why would kern.log stop logging after crash & reboot

Server: Ubuntu 12.04 I recently noticed that my servers kern.log had stopped logging. I've not separated iptables from the kern.log so it used to be very active, however recently it's been logging nothing at all. Syslog however is still working…
split_account
  • 169
  • 4
  • 11
1 2 3
45 46