Questions tagged [rsyslog]

Rsyslog is enhanced syslogd with lot of enhanced features

Rsyslog is enhanced syslogd and supports among other things MYSQL, PostgreSQL, failover log destination etc. Features like encryption, failover destination, precise timestamps etc make it a ideal candidate for enterprise log management. It is available in both flavors: with support and community edition.

References:

729 questions

votes

1 answer

Rsyslog template capture groups

I am creating an Rsyslog template to parse apache logs into JSON in order to send to elastic search. I am presently trying to capture the request time from the access_log but cannot seem to get my regular expression to work properly. Rsyslog config…

elasticsearch rsyslog

asked Mar 30 '16 at 08:48

insultant

votes

1 answer

How do I switch from syslog to rsyslog?

We are moving from a RHEL5.x platform to a RHEL6 platform. RHEL5.x had the syslogd while RHEL6.x has rsyslogd. I have legacy C code that makes these kinds of calls foo.c #include ...snip syslog(LOG_NOTICE, "Using configuration: %d\n",…

linux syslog rsyslog

asked Mar 18 '16 at 19:43

Chris F

14,337
30
94
192

votes

1 answer

How to get tomcat log from docker container running in atomic host

I am working on Log monitoring, I have requirement of getting tomcat application server logs(example: catalina.log) running in the docker container(container is running in atomic host) and passing it to Logstash server using rsyslog. I am able to…

docker logstash tomcat8 rsyslog

asked Mar 16 '16 at 14:17

Praveen M

votes

1 answer

Generate log4j timestamp format in linux date

I want to mimic the format used in log4j for timestamps using the linux date (just some quick scripting) On log4j the format is defined as %d{dd MMM yyyy HH:mm:ss,SSS} That would translate into lines like: 2016-03-10 07:01:09,778 2016-03-10…

linux logging rsyslog

asked Mar 11 '16 at 11:31

aseques

votes

1 answer

rsyslog forwarder seems not not work

I would like to send rsyslog message to my ELK stack but it does not work rsyslog conf *.* @@127.0.0.1:10514 local6.* /tmp/grenard.log &~ logstash conf input { syslog { port => 10514 type =>…

logstash syslog rsyslog

asked Mar 01 '16 at 11:07

glmrenard

votes

1 answer

rsyslog failed to start because of kamailio process

service rsyslog start Starting system logger: Can't open or create /var/run/syslogd.pid. Can't write pid. I am using kamailio with rsyslog. When I kill kamailio, rsyslog gets locked. Any help is appreciated.

logging rsyslog kamailio

asked Feb 27 '16 at 06:03

Cazy programmer

votes

1 answer

How can I centralize rsyslogs and use as input for logstash?

I want to send my rsyslogs from my client servers and use them as input in my logstash, this what I found on web: on my client I added this lines to my rsyslog.conf : $ModLoad imuxsock $ModLoad imklog # Provides UDP forwarding. The IP is the…

linux logging logstash rsyslog

asked Feb 22 '16 at 23:26

Ladan Nekuii

votes

1 answer

How to set a specific rule in Rsyslogd for an IP address and send to a mysql server

I'm currently using rsyslog to send all my syslogs to a SQL server and it works fine. But one of my computer sends it to an diffrent format. How can I set an exception for a given IP address? Here is what I got now: $template sysMysql,"INSERT INTO…

mysql rsyslog

asked Feb 15 '16 at 12:20

Sethnico

votes

0 answers

Convert syslog-ng to rsyslog

How can I convert this configuration to rsyslog? options { long_hostnames(off); sync(0); perm(0640); stats(3600); log_msg_size(163840); log_fifo_size(50000); }; source s_local { …

rsyslog

asked Feb 01 '16 at 21:22

Patrícia Villela

votes

1 answer

Getting Logstash to treat syslog message string as JSON if applicable

I have a variety of shell scripts from which I run a logger line for syslog with a message in json format: printf '{"task_id": "%s", "seconds": %f, "success": %s}' ${task_id} ${num_seconds} ${success_bool} This gets the following output in…

logging elasticsearch logstash logstash-grok rsyslog

asked Feb 01 '16 at 20:33

Loic Duros

5,472
10
43
56

votes

1 answer

A python background process (= child of rsyslog process) ... only write on close

Below is a simple python program that logs rsyslog data via StdIn to py.output.txt. My issue is that is doesn't log the data from STDin in realtime to the output. If ishome.py runs as a background child process (of rsyslog) ... no output is send to …

python linux shell rsyslog

asked Jan 24 '16 at 22:11

H Doucet

votes

2 answers

I want to take a syslog file 3 by 3 lines

All i want is to open a rsyslog file with fopen() take the first 3 lines set a variable with the last of this 3 lines. Then take the other 3 lines e.t.c. $path_file = variable_get('$path'); $file = fopen($path_file, 'r'); for($i=0;$i<3;$i++) { …

php file drupal rsyslog

asked Jan 08 '16 at 08:46

user5409845

votes

1 answer

Nginx logging to remote rsyslog

As nginx 1.7+ supports syslog, I tried to aggregate all nginx nodes logs onto a remote rsyslog server. I set the nginx.conf with error_log syslog:server=[REMOTE_HOST]:514,tag=nginx; access_log syslog:server=[REMOTE_HOST]:514,tag=nginx; And on…

logging nginx rsyslog

asked Jan 04 '16 at 19:25

perigee

9,438
11
31
35

votes

1 answer

Log processing - send each new line in a log file as a parameter to script in real time

I have an active log file (which means there are new lines of log information appended to the file in real time). What I want: When there is a new line appended, pass the new line of log as a parameter to a script (Bash, C, or even PHP). What is…

shell logging rsyslog

asked Dec 30 '15 at 02:50

Shiji.J

1,561
2
17
31

votes

2 answers

Pass comand line parameters to shell script via omprog (rsyslog module)

Having bad times with passing system log message to shell script as command line parameter via rsyslog module omprog. My /etc/rsyslog.conf: module(load="omprog") if $syslogtag contains 'user' then action(type="omprog" binary="/usr/bin/test") My…

linux shell logging rsyslog

asked Dec 07 '15 at 15:47

user3307073

Prev 1 2 3

…

48 49 Next