Questions tagged [syslog-ng]

The syslog-ng application is a flexible and highly scalable system logging application that is ideal for creating centralized and trusted logging solutions.

The syslog-ng application is a flexible and highly scalable system logging application that is ideal for creating centralized and trusted logging solutions. The main features of syslog-ng are summarized below.

Reliable log transfer: The syslog-ng application enables you to send the log messages of your hosts to remote servers using the latest protocol standards. The logs of different servers can be collected and stored centrally on dedicated log servers. Transferring log messages using the TCP protocol ensures that no messages are lost.
Secure logging using TLS: Log messages may contain sensitive information that should not be accessed by third parties. Therefore, syslog-ng supports the Transport Layer Security (TLS) protocol to encrypt the communication. TLS also allows the mutual authentication of the host and the server using X.509 certificates.
Direct database access: Storing your log messages in a database allows you to easily search and query the messages and interoperate with log analyzing applications. The syslog-ng application supports the following databases: MSSQL, MySQL, Oracle, PostgreSQL, and SQLite.
Heterogeneous environments: The syslog-ng application is the ideal choice to collect logs in massively heterogeneous environments using several different operating systems and hardware platforms, including Linux, Unix, BSD, Sun Solaris, HP-UX, Tru64, and AIX.
Filter and classify: The syslog-ng application can sort the incoming log messages based on their content and various parameters like the source host, application, and priority. Directories, files, and database tables can be created dynamically using macros. Complex filtering using regular expressions and boolean operators offers almost unlimited flexibility to forward only the important log messages to the selected destinations.
Parse and rewrite: The syslog-ng application can segment log messages to named fields or columns, and also modify the values of these fields.
IPv4 and IPv6 support: The syslog-ng application can operate in both IPv4 and IPv6 network environments; it can receive and send messages to both types of networks.

275 questions

votes

1 answer

Programatically set log level in syslog

How do I programatically set log level in syslog-ng? So for I have set the log level by editing /etc/syslog-ng/syslog-ng.conf and restarting the syslog-ng service. service syslog-ng restart. I have a php app and I want users to be able to set the…

asked Jul 04 '14 at 09:09

Mulvihic

votes

1 answer

syslog-ng error when I try to configure log for facility LOG_LOCAL1

I"m in a CentosOS linux environment and I'm using syslog-ng to configure my logging for my php app. on the php side I generate logs using the code below: openlog(‘Program1', LOG_NDELAY, LOG_LOCAL1); syslog(LOG_INFO, "My log…

php linux logging syslog syslog-ng

asked Jul 03 '14 at 17:12

Mulvihic

votes

2 answers

Does syslog-ng support new line control characters in message?

I've configured syslog-ng for a java application running on sles 10, when an exception occurs it shows stack trace without new lines. any suggestion is appreciated.

linux control-characters syslog-ng

asked May 10 '14 at 10:52

Mehdi Eshaghi

votes

1 answer

Getting syslog-ng json output as sensu standalone event

Could one please advise best way to convert syslog-ng event in json (like http://hastebin.com/gesuyuluwo.json ) in sensu as (critical) event? Thank you.

json syslog-ng sensu

asked Apr 14 '14 at 09:50

joystick

votes

1 answer

Using logrotate with syslog-ng on raspberry pi (how to delete old logs?)

Ok.. I'm using my raspberry pi as a syslog server for a Cisco ASA and a Cisco router. I have the logs being populated to my /var/log/network destination. They are currently being logged with the format: _$MONTH$DAY$YEAR.log, with ROUTER or FIREWALL…

linux debian raspberry-pi logrotate syslog-ng

asked Mar 12 '14 at 16:57

kbarnes

votes

2 answers

Forwarding logs to splunk/graylog from syslog-ng

I want to forward my apache and tomcat logs to my central log server.(splunk/graylog) I have client systems with syslog-ng running. How can I forward the logs? Is it necessary to parse the logs? Can't I forward logs as they are? do I have to edit…

linux syslog splunk syslog-ng graylog2

asked Mar 10 '14 at 06:11

Randeep

votes

1 answer

Is there a syslog server that syncs all log messages even if connectivity is lost?

Is there a syslog server that syncs logs from remote machines even if machines lose connection or server loses connection? It is less likely that server will lose connectivity but if remote machines work on really flaky 3g or wifi connection then it…

syslog rsyslog syslog-ng

asked Jan 19 '14 at 13:05

valentt

votes

0 answers

IS it possible to send Kernel Messages from syslog-ng to a characther device node

I am running a USB Kernel module and it prints messages via printk(). I am using syslog-ng(3.4.5) ,based on the method shown in this link --->…

logging linux-kernel linux-device-driver syslog syslog-ng

asked Dec 12 '13 at 14:23

marty

votes

1 answer

Is Logstsh shipper instance and redis required in this architecture?

I have created a demo environment using Logstash, redis , elastic search and kibana. (http://indico.cern.ch/getFile..... Here logstash shipper is reading logs from log file which i have centralized using syslog-ng. Loogstash shipper is forwarding it…

logstash syslog-ng

asked Nov 26 '13 at 06:51

amolnavghane23

votes

1 answer

syslog-ng support for postfix multi-line when using tls

I am trying to get syslog-ng to support postfix's multiple lines. As I understand it, syslog-ng can use the " flags(no-multi-line)" config option, but it is either not working, or I am applying it incorrectly. My configurations: Client: source s_src…

ssl postfix-mta syslog-ng

asked Oct 26 '13 at 16:38

Clayton Dukes

1,297
2
11
30

votes

1 answer

syslog-ng with unix-stream destination

I am trying to configure syslog-ng destination path to use unix-stream sockets for Inter process communication. I have gone throgh this documentation…

sockets unix ipc syslog-ng

asked Sep 17 '13 at 13:49

Sarath Chandra Jiguru

votes

3 answers

Syslog-ng format-json not working

I'm desperately trying to send a message as JSON to a PHP script. destination d_php { program("/usr/bin/php -f /data/htdocs/log.php" template("$(format-json)\n") ) ; }; The php script is fine. Using simple macros works well, but the "format-json"…

json templates syslog-ng

asked Jul 04 '13 at 12:56

Chuck

1,110
3
15
22

votes

2 answers

PHP error logging with Syslog-NG

I've got some logs gathered on a monitoring server using Syslog-NG which are : copied into a local daily-rotated file, stored into a MySQL database. Unfortunately, no error is raised since they are evaluated as PHP notices (see this post). Hence,…

php syslog-ng

asked May 06 '13 at 22:05

David

2,603
4
18
28

votes

1 answer

Syslog-ng, Log file and fifo file

I have some question about syslog fifo and log file. For example I have my gc.log and I have this configuration on syslog source s_splunk { udp(ip("127.0.0.1") port(514)); file("/logs/gc.log" follow_freq(1)); }; destination d_splunk { …

fifo splunk syslog-ng

asked Mar 04 '13 at 14:44

Italo

votes

1 answer

Tomcat syslog add custom tag in log file

We are running multiple tomcats instances in single box for different different applications, and we are sending logs to syslog using following lines in tomcat config. JAVA_OPTS="$JAVA_OPTS…

linux tomcat syslog-ng

asked Dec 27 '12 at 16:32

Satish

16,544
29
93
149

Prev 1 2 3

…

18 19 Next