Questions tagged [rsyslog]

Rsyslog is enhanced syslogd with lot of enhanced features

Rsyslog is enhanced syslogd and supports among other things MYSQL, PostgreSQL, failover log destination etc. Features like encryption, failover destination, precise timestamps etc make it a ideal candidate for enterprise log management. It is available in both flavors: with support and community edition.

References:

729 questions

votes

2 answers

is RELP exist outside of RSYSLOG protocol if so were?

is RELP exist outside of RSYSLOG protocol if so were? i want to know if the relp protocol has more to it then a protocol that has been writen to the rsyslog

asked Dec 25 '12 at 10:01

mosheovadi1

votes

1 answer

Using logAnalyzer with log4j syslog appender

I am trying to send syslog messages from my web application to RSYSLOG and then view them in logAnalyzer. I manage to see the logs but the following fields are not shown in the main table: Facility, Sevirty, ProcessID. They do appear in the…

log4j syslog rsyslog

asked Dec 10 '12 at 11:57

user1891529

votes

1 answer

Disable timestamp

How can I disable the timestamp (default template I think)? I use rsyslog to send Apache access.log but I don't want the rsyslog timestamp... Nov 26 14:13:21 remotehost apache: 1.2.3.4 - user [26/Nov/2012:14:13:21 +0100] "GET /index.php HTTP/1.1"…

apache rsyslog

asked Nov 26 '12 at 16:49

Alfons

votes

1 answer

regex for rsyslog to exclude a pattern

I need an rsyslog regex to forward all the messages containing the word "FIREWALL" to a remote server. The original log format is: Jul 24 16:33:09 FW02 kernel: [3456825.472985] FIREWALL_DENY_IN: IN=eth2…

regex logging rsyslog

asked Sep 07 '12 at 08:25

alex

votes

2 answers

Incomplete sylog log when thread exit

I ve a main program that initializes syslog, this program can run multiple threads, the problem is, when a thread exit, i find only a part of their logs in syslog file, what is the problem please?

c rsyslog

asked Aug 01 '12 at 09:29

elhadi dp ıpɐɥןǝ

4,763
2
30
34

votes

1 answer

Setting up rsyslog filter

I am writing something and I wanted to take advantage of Linux API for logging, I wanted to put the logs of my app to different files, so I added those lines to rsyslog.conf if $programname == 'RearWindowDaemon' then /var/log/RearWindowDaemon.log…

linux logging rsyslog

asked Jun 13 '12 at 19:27

Andna

6,539
13
71
120

votes

1 answer

Multiple apache virtual host on different rsyslog facilities

Working on CentOS (specifically the Amazon EC2 Linux AMI). I have 2 virtual host on my apache, and I would like them to log on different rsyslog facilities, so I configured my hosts like this: DocumentRoot /var/www/site1 …

linux apache centos syslog rsyslog

asked Jun 13 '12 at 11:45

MatteoSp

2,940
5
28
36

votes

3 answers

how to send log to a remote log server through rsyslog?

I'm very new on ossim. i have installed ossim 3.1 onto a virtual machine (vmware) I have 2 questions: 1) I have enabled SYSLOG from ossim-setup. Now I'm getting horde of syslog messages in ANALYSIS-> SIEM. How can i modify the logging rate? how can…

logging rsyslog

asked May 16 '12 at 13:57

Gappa

votes

1 answer

storing syslog messages to MySQL using rsyslog

I need to store Syslog messages to a database like MySQL for one of my application. but i only want to store those messages which contains a specific pattern. I don't want to store all the lines which are logged to Syslog. Is it possible to specify…

syslog rsyslog

asked May 15 '12 at 08:44

Ankit Kumar

1,433
1
16
24

-1

votes

0 answers

How to save logs from every client to a single file on rsyslog server meanwhile not write clients logs to messages log file on the server side

Guys： I have thousands of rsyslog clients and one rsyslog server. I have gather all clients logs to a single file on server side successfully，But I can see clients logs in messages file too,and this is not my need. Is there anyway to save logs from…

linux message rsyslog

asked Aug 31 '23 at 03:25

Gongze

-1

votes

1 answer

rSyslog stopped sending only SOME data

I have configured a remote logging from one of my servers to the central log server via rsyslog TCP/SSL Everything worked fine until yesterday where most of the files just stop being transmitted while some are still sent/updated in the log server. I…

syslog rsyslog

asked Apr 22 '23 at 07:09

Mr.P

1,182
3
20
44

-1

votes

1 answer

Logrotate add suffix to a rotated log file: Nested

on a Debian host is running a rsyslog server , which takes logs from the firewall. Everything works fine except for my logrotate configuration which adds another suffix to a rotated log and that makes the whole thing messy. logrotate-nested…

rsyslog logrotate

asked Feb 24 '23 at 11:15

beard black

-1

votes

1 answer

Unable to Parse Kafka server logs format into RSYS

Trying to send Kafka server logs from Rsys to FLuentd. First converted the Kafka server log into Json, and then sending the Json logs from rsys. VM1: Kafka,Rsyslog installed VM2: FuentD Example of Kafka server logs. {"timestamp":"2022-07-29…

json apache-kafka fluentd rsyslog

asked Jul 29 '22 at 09:41

Gautam

-1

votes

1 answer

Rsyslog unable to send multiline logs

I'm unable to push the below logs via rsyslog. The rsyslog is only forwarding one line of the log. Kafka-server logs: [2022-07-25 11:43:45,091] INFO KafkaConfig values: advertised.host.name = null advertised.listeners =…

regex parsing apache-kafka fluentd rsyslog

asked Jul 25 '22 at 12:02

Gautam

-1

votes

2 answers

Extract data from syslog with rsyslog

I'm actually working on Syslog Server in CentOS 7. I would like to create a dynamic file from the user variable on the message part. So, in my example, if the message part is : 30-Jan-2022 11:50:10 HOSTNAME ... pri=5 confid=01 slotlevel=2…

syslog rsyslog

asked Jan 30 '22 at 11:14

Aurélien BOURDOIS

Prev 1 2 3

…

48 49 Next