Stack Overflow
Stack Overflow

Questions tagged [rsyslog]

Rsyslog is enhanced syslogd with lot of enhanced features

Rsyslog is enhanced syslogd and supports among other things MYSQL, PostgreSQL, failover log destination etc. Features like encryption, failover destination, precise timestamps etc make it a ideal candidate for enterprise log management. It is available in both flavors: with support and community edition.

References:

729 questions
0
votes
1 answer

How can I connect rSyslog to an SQL database?

I'm trying to connect rsyslog to a remote SQL database. Here's (part of) my /etc/rsyslog.conf: $ModLoad ommysql *.* action(type="ommysql" server="logs.example.com" serverport="3306" db="logs" uid="..." pwd="...") I can send logging messages to the…
zrneely
  • 1,802
  • 3
  • 17
  • 26
0
votes
0 answers

logstash and rsyslog, changing port

I would like to use Rsyslog with logstash, unfortunately I ran into a few problem. I'm working with a Ubuntu 14.04 server and Logstash 1.4.0 If I use the syslog plugin for logstash with the port 514, there is no problem everything work find.…
LinChan
  • 417
  • 1
  • 5
  • 17
0
votes
1 answer

How to collect spring batch remote partitioned application logs from all servers to one server using Rsyslog?

I have use case where my daily batch processing application (spring batch java application using remote partitioning) is deployed to 4 servers and application creates log in log file in daily batch folder. e.g. batch with batch id 2014-07-15 stores…
vishal
  • 3,993
  • 14
  • 59
  • 102
0
votes
1 answer

Programatically set log level in syslog

How do I programatically set log level in syslog-ng? So for I have set the log level by editing /etc/syslog-ng/syslog-ng.conf and restarting the syslog-ng service. service syslog-ng restart. I have a php app and I want users to be able to set the…
Mulvihic
  • 295
  • 1
  • 2
  • 10
0
votes
1 answer

Logstash - put my pattern to the host

My idea is to take some directories (mostly ip addresses) and put to the "host" so I will know that this log is from this host. Is it possible? I cannot find it at the documentation :( The problem is that I have rsyslog on the clients and rsyslog on…
user3612491
  • 223
  • 3
  • 7
0
votes
1 answer

rsyslog - stack property based filters (or Rainer solution)

I need the following filter in rsyslog. My syntax is incorrect and it generates an error in the rsyslog logfile: :programname, isequal, "program1" & :msg, contains, "an expression" /dev/null &~ Error is: the last error occured in…
RoyHB
  • 1,715
  • 1
  • 22
  • 38
0
votes
1 answer

I am trying to forward my apache logs to rsyslog then to splunk

I am trying to make all of my apache and drush logs forward to my Splunk server via rsyslog. First, in my /etc/httpd/conf/httpd.conf file I change the entry: ErrorLog var/log/httpd/error_log to: ErrorLog syslog:local1 as described at:…
slpcc63
  • 17
  • 1
  • 8
0
votes
1 answer

Make rsyslog ignore missing log file

I would like my rsyslog to print exact logs to two different files. One is /var/log/messages this is done by default RHEL rule: *.info;mail.none;authpriv.none;cron.none /var/log/messages And the second is a $hostname_messages.log…
XSzuflaX
  • 1
  • 2
0
votes
2 answers

Python: subprocess loops forever

I'm trying to start/stop rsyslog through a python script: RSYSLOG_INIT_SCRIPT='/etc/init.s/rsyslogd' subprocess.call([RSYSLOG_INIT_SCRIPT,'stop']) /etc/init.d/rsyslogd is a regular init script. The problem is that it continues executing this script…
m2o
  • 6,475
  • 6
  • 27
  • 24
0
votes
0 answers

Unique format in rsyslog to send to logstash

I am trying to make log centralised system using logstash by gathering all logs from each server rsyslog. However, the format are different between each basic tool like mail, cron, boot.log Is there a way to make these kinds of log to all have the…
A-letubby
  • 8,474
  • 8
  • 38
  • 48
0
votes
1 answer

Strange entry in tcpdump info for Rsyslog Message

I have a problem with rsyslog.It works as a log collector for some devices. When I check with TCP dump i see bellow line is coming. Facility user (1), Severity info (6) Msg: 1 2014-01-26T15:21:25.345+03:00 XXX_XXX-Node1 [|syslog] 15:21:37.526894…
Suner Evren
  • 63
  • 1
  • 7
0
votes
1 answer

Is there a syslog server that syncs all log messages even if connectivity is lost?

Is there a syslog server that syncs logs from remote machines even if machines lose connection or server loses connection? It is less likely that server will lose connectivity but if remote machines work on really flaky 3g or wifi connection then it…
valentt
  • 857
  • 8
  • 19
0
votes
2 answers

%HOSTNAME% value is "unknown" in rsyslog

The Gist Where does rsyslog get the value of %HOSTNAME%? Why does an application served by Tomcat have the correct %HOSTNAME%, but a console application with the same configuration has "unknown" as the hostname? We're using rsyslog on an EC2…
D. Patrick
  • 2,894
  • 26
  • 37
0
votes
1 answer

automake: process a configuration file

I'm wondering how to process a data template so as to install properly configurations files accordingly to "make distcheck". For instance I try severals ways like this but either the template (here rsyslog.conf) is finally installed by "make…
user3149355
  • 49
  • 5
0
votes
1 answer

How to add syslog to Jenkins console

The Problem: I am trying to get the syslog to appear in the Jenkins build log (console). I am sure there must be a way to inform a job on Jenkins to retrieve log messages from more sources than just the execute shell. Background: The Job I have…
Inbar Rose
  • 41,843
  • 24
  • 85
  • 131
1 2 3
48 49