Questions tagged [syslog-ng]

The syslog-ng application is a flexible and highly scalable system logging application that is ideal for creating centralized and trusted logging solutions.

The syslog-ng application is a flexible and highly scalable system logging application that is ideal for creating centralized and trusted logging solutions. The main features of syslog-ng are summarized below.

Reliable log transfer: The syslog-ng application enables you to send the log messages of your hosts to remote servers using the latest protocol standards. The logs of different servers can be collected and stored centrally on dedicated log servers. Transferring log messages using the TCP protocol ensures that no messages are lost.
Secure logging using TLS: Log messages may contain sensitive information that should not be accessed by third parties. Therefore, syslog-ng supports the Transport Layer Security (TLS) protocol to encrypt the communication. TLS also allows the mutual authentication of the host and the server using X.509 certificates.
Direct database access: Storing your log messages in a database allows you to easily search and query the messages and interoperate with log analyzing applications. The syslog-ng application supports the following databases: MSSQL, MySQL, Oracle, PostgreSQL, and SQLite.
Heterogeneous environments: The syslog-ng application is the ideal choice to collect logs in massively heterogeneous environments using several different operating systems and hardware platforms, including Linux, Unix, BSD, Sun Solaris, HP-UX, Tru64, and AIX.
Filter and classify: The syslog-ng application can sort the incoming log messages based on their content and various parameters like the source host, application, and priority. Directories, files, and database tables can be created dynamically using macros. Complex filtering using regular expressions and boolean operators offers almost unlimited flexibility to forward only the important log messages to the selected destinations.
Parse and rewrite: The syslog-ng application can segment log messages to named fields or columns, and also modify the values of these fields.
IPv4 and IPv6 support: The syslog-ng application can operate in both IPv4 and IPv6 network environments; it can receive and send messages to both types of networks.

275 questions

votes

1 answer

My embedded Python running inside "syslog-ng -Fevd" does not appear to receive signals, is that true?

I have a Python program running inside "syslog-ng -Fevd" OSE version 3.8 so I can develop quickly from the command line. My signal handler catches control-C (and I assume other signals) when run from the command line but not when inside of…

python signals syslog-ng

asked Feb 15 '17 at 20:05

tpc1095

votes

0 answers

How to upgrade kernel of a server running syslog-ng

I run a server with syslog-ng to collect my network logs, and by receiving a security bulletin alert I have to upgrade this server. This question is what is the strategy to upgrade this machine, knowing that many other machine's logs depend on this…

linux upgrade syslog-ng

asked Feb 07 '17 at 20:55

Ali Mezgani

1,229
3
13
19

votes

1 answer

logrotate, syslog-ng and loosing log

Background Apache server running on a machine and producing logs into /var/log/httpd/error_log Using syslog-ng to send log to a port 5140 Eventually it will be consumed by kafka producer to be send to a topic logrotate rotates…

netcat piping logrotate syslog-ng

asked Jan 12 '17 at 20:20

Albatross

votes

1 answer

Increase size of syslogd messages

I am trying to send a script output to syslogd file. As the script output is large, its is split into 2-3 syslog messages, size of each message is 1024. So, can I increase the size of the message? And what is the maximum size will I be able to…

linux syslog syslog-ng

asked Jan 11 '17 at 16:35

Steve

votes

1 answer

Transferring logs using syslog-ng `as is` without timestamp and hostname etc

apache-kafka syslog-ng

asked Jan 10 '17 at 19:40

Albatross

votes

0 answers

syslog-ng crashes (SIGSEGV) on TLS

OS: CentOS 7 syslog-ng version: 3.6.5 TLS is configured in /etc/syslog-ng/syslog-ng.conf file. key file is located in /etc/syslog-ng/key.d cert file is located in /etc/syslog-ng/cert.d It works fine if syslog-ng has been started from…

ssl syslog-ng

asked Jan 10 '17 at 13:00

Klaus Schulte

votes

1 answer

modify syslog-ng.conf to add limit of log file size and log rotate option

I have modified /etc/syslog-ng/syslog-ng.conf file to create my own log file at different location using below changes : source s_src { system(); internal(); }; destination d_syslog { file("/home/abc/test_log"); }; log{…

syslog syslog-ng

asked Jan 05 '17 at 09:06

Asit Shah

votes

1 answer

Exporting logs from Snort to Syslog-ng to Redis

I am using Snort 2.9.3 and would like to export the logs to Syslog-ng, and then from syslog-ng to a Redis database. I found a plugin: syslog-ng-mod-redis However, where would I include this? How can I confirm that the logs produced by Snort can be…

redis snort syslog-ng

asked Nov 13 '16 at 00:33

Help Me Nothing

votes

0 answers

Syslog-ng not logging to empty sqlite database

We're developing an application based on Yocto, distro Poky 1.7, and now we've to implement the logger, so we have installed the one already provided by our meta-oe layer: Syslog-ng 3.5.4.1 libdbi 0.8.4.1 libdbi-drivers 0.8.3 Installation has been…

database sqlite yocto syslog-ng

asked Oct 18 '16 at 06:47

Andre

votes

0 answers

Why syslog-ng not recognize "python" keyword?

I'm trying to use Syslog-ng so that it forwards the messages to a python destination. However, I keep getting a "Error parsing destination, destination plugin python not found ..." message. I am following this tutorial exactly.…

python syslog-ng

asked Oct 13 '16 at 00:33

Bandith Phommounivong

votes

1 answer

syslog-ng process cannot write to folder, but user can

We have an NFS mount as a destination for our log files. I have syslog-ng running as root out of simplicity. I have the NFS share mounted, and can, by-hand, create files and directories. But syslog-ng is throwing an error saying that it cannot…

linux nfs system-administration uid syslog-ng

asked Sep 20 '16 at 16:43

jasonmclose

1,667
4
22
38

votes

1 answer

Syslog-ng truncates lines when writing to output log

OS: SLes 11 sp4 syslog-ng: syslog-ng-2.0.9-27.34.39.2 Hi, syslog-ng is configured to read from a application log file and then send it to another file in /var/log (tcpdump is not installed, I cant install it on a blackbox so this is how I test my…

syslog-ng

asked Aug 29 '16 at 18:07

user1019100

votes

1 answer

How to specify a php log file using syslog-ng

Within my PHP script, I have a line printing output to syslog, much like the one below: syslog(LOG_INFO, "Writing log info to syslog"); By default, it prints output to /var/log/messages. Is there anyway to change the output file to be something…

php centos6 syslog syslog-ng

asked Aug 25 '16 at 15:15

mariahm24

votes

2 answers

How to send audit.log to remote server with syslog-ng

Good day, I have SLES 10 with syslog-ng (syslog-ng-1.6.8-20.23.1) and I cannot get the proper configuration so the file /var/log/audit/audit.log is sent to the remote syslog server. I used tcpdump and I can see some details in the packets that are…

audit syslog-ng

asked Aug 11 '16 at 15:56

user1019100

votes

1 answer

syslog-ng issue in tagging to server

I installed syslog-ng by using "yum install syslog-ng" in both local machine and server end. I am using an open source version of syslog-ng. My need is to pass the log file name from client to server end . I explicitly set the .SDATA.file at…

syslog-ng

asked Aug 08 '16 at 10:56

rajapallavan

Prev 1 2 3

…

18 19 Next