Hi,
syslog-ng (https://syslog-ng.org/) is one of the most widely used open
source log collection tools, capable of filtering, classifying, parsing log
data and forwarding it to a wide variety of destinations. In its most
recent release (3.7.1
https://github.com/balabit/syslog-ng/releases/tag/syslog-ng-3.7.1) support
for delivering messages to kafka is added using
the 'official' Java client
Hi,
I have a bunch of tomcat servers in a clustered configuration, and
currently we use a syslog-ng for aggregating the log files off these hosts.
I was wondering whether it was possible to cause tomcat to syslog its
start, stop, restart, reload actions to syslog, maybe using log4j?
It would seem that there would be the problem that until tomcat was
loaded it couldn't load log4j to sent a syslog
Hi,
I would like to deepen my understanding of syslog-ng and flume integration.
I had initial three questions :
1) Does flume timestamp is the same as the received syslog-ng event
timestamp?
2) Are the syslog-ng metadata kept by flume as extra metadata (> syslog-ng
OSE 3.0)?
3) Are the extra metadata (and potientially syslog-ng ones) usable with the
collector sink template?
>From what I understand
Has anybody had any luck setting up the log4j.properties file to send logs
to a syslog-ng server?
My log4j.properties excerpt:
log4j.appender.SYSLOG=org.apache.log4j.net.SyslogAppender
log4j.appender.SYSLOG.syslogHost=10.0.20.164
log4j.appender.SYSLOG.layout=org.apache.log4j.PatternLayout
log4j.appender.SYSLOG.layout.ConversionPattern=%d{ISO8601} %p %c: %m%n
log4j.appender.SYSLOG.Facility=HADOOP
In version 1.2.15, the max length was changed to 1024 per the syslog spec,
but we use syslog-ng (as I think many do to avoid some shortcomings of
syslog). So we got truncated messages. Rolling back to 14 fixed this.
Could there be a flag added to disable this limit in a future revision? Or
perhaps there is a way and I'm not finding it.
rick
Hello folks,
I am using flume-ng for cdh4 (1.10), and i am redirecting syslog output
from a network device to flume-ng. My config is as follows:
test1.channels.mem-chan-1.type = memory
test1.channels.mem-chan-1.capacity = 100000
test1.channels.mem-chan-1.transactionCapacity = 1000
test1.sources.syslog-traffic.channels = mem-chan-1
test1.sources.syslog-traffic.type = syslogudp
test1.sources.syslog
How to configure flume ng so that i can flume-ng takes that syslog message
and send it to cassandra.
Probably people here already have experience integrating syslog-ng and
chukwa, so I want to let you know what we are planning and discuss
possible improvements.
We don't want to deploy chukwa agents to all the monitored servers
(little disk and no java there), and use instead syslog-ng that is
sent msgs through UDP to a central syslog server. I have setup it so
it creates files with
/var/log/cluster
Hello
I'm running an apache/tomcat server under Windows Server 2003. I would like
to send tomcat logs to syslog-ng server under Debian. I tried with log4j,
but I receive only application log, no tomcat logs. Do you have a solution?
Thnaks
Hello,
can i send logs by protocol syslog to another host instead of a file?
thanks,
C�sar.
