similar to: syslog-ng or rsyslog?

I asked a similar question about a year ago and didn't get any answers. So I thought I'd try again. What do people do to get their syslog messages on CentOS 7 into a remote ELK stack. I've tried lots of things involving rsyslog, filebeat, redis, logstash and so on in lots of different configurations but nothing really works. I can get rsyslog to talk directly to logstash (acting as

Hi All. I have an environment in which I would like to implement a GUI for parsing syslog-ng logs from operating system, application servers and databases. I've heard that Splunk is a good tool but its quite hard to learn. Are there any valuable alternatives? What are you using and why? Best regards, Rafal.

Hi Thomas, > What's really nice is, that it understands the Icecast log format > extension where we record the duration of the connection in seconds. I can't take credit for that, the work was done by Alejandro: https://github.com/piwik/piwik/pull/65 Cheers! Daniel

Hello, I have a remote IBM x3550 M4 server that I try to remote control through IMM2. The problem: only the blinking cursor is visible in login console. It moves when I type. It moves to where "Login: _" should be if I press ctrl+c. I can login if I enter the correct login and password, but the shell that I get also shows only the blinking cursor and no text. I can issue commands.

On Fri, 10 Jul 2020 at 16:33, Pete Biggs <pete at biggs.org.uk> wrote: > > I asked a similar question about a year ago and didn't get any answers. > So I thought I'd try again. > Honestly, as much as I have heard of people using Elastic Kibana.. they are usually using it for things already in JSON. WHen I looked in the past I either found someone wanting me to set up a

Hello list, I am using puppet 2.7.20 from rpmforge, with a build date of Wed 20 Mar 2013. EPEL has an even older version. Then I see this: http://puppetlabs.com/security/cve/cve-2013-3567 that was posted on the month of July 2013. Do I understand correctly, that my puppet-master is vulnerable to remote code execution by every node that has access to master's port tcp/8140? If so, then

Hi all, Due to a security breach at my office recently, we need to log successful / failed log-ins.? I've put in "log level = 3" in smb.conf on our active directory domain controller which seems to log what we need, however this is generating massive log files, due to it logging every file opening/closing by all users.? How do I log successful/failed log-ins without having to

I have a need to use a project management software package under Centos 6.6 and have started looking at ProjectLibre which is a Java package. Unfortunately it seems to have shortcomings when it comes to following up projects and my current understanding is that it falls short of Microsoft Project 2010, i.e., a previous version. Does anyone have experience with this type of software and what

On Fri, 2020-07-10 at 16:44 -0400, Jason Edgecombe wrote: > I don't use ELK at the moment, but is this helpful? > > % journalctl -f --output=json > > The above command prints the continuous output of the systemd journal in > json format. > Thanks. The problem is getting that into logstash. But it's actually quite useful anyway as it's another method of

I have one module, kibana, that defines a file snippet for the apache module to fulfill (e.g., /etc/https/conf.d/kibana.conf). The apache::params class defines a variable of the path of where this snippet should be placed, $config_d. The snippet uses this variable in its definition. However, it seems that the snippet never resolves the $apache::params::config_d variable, and I''m

Hey guys, I'm trying to rotate a logstash log that can grow pretty large. 3.4GB last I saw! And that's because the logrotate script I came up with didn't work. The error I get on a syntax check is this: #logrotate -f logstash size: '100M': No such file size: '100M': No such file size: '100M': No such file size: '100M': No such file size:

Hello, how do people cope with constant SELinux errors like this from Fusion Passenger: 36886. 03/27/2013 14:20:05 ps unconfined_u:system_r:passenger_t:s0 2 file open system_u:system_r:udev_t:s0-s0:c0.c1023 denied 1922 36887. 03/27/2013 14:20:05 ps unconfined_u:system_r:passenger_t:s0 4 dir getattr unconfined_u:system_r:initrc_t:s0 denied 1927 36888. 03/27/2013 14:20:05 ps

I have several network appliances, and I want aggregate their syslog output for later analysis. Eventually I might think about a Splunk box, but for the interim I'm hoping to just build a CentOS 6 syslog server and have it aggregate everything on it for quick review. I installed rsyslog and am looking through the /etc/rsyslog.conf file for what I configure to (a) listen for syslog input from

Hallo, I try to send my centos 7 logfiles to an logstsah server. Can anyone give me an hint how to fix this problem? Thanks Ralf > {"index"=>{"_index"=>"%{[@metadata][comline]}-%{[@metadata][version]}", > "_type"=>"doc", "_id"=>"U1XLXGkBpfl5FoHeY4J8", "status"=>400, >

Hi All ;) I am using a virtual machine with: Red Hat Enterprise Linux Server release 5.7 (Tikanga) Linux logserver01 2.6.18-274.el5 #1 SMP Fri Jul 8 17:36:59 EDT 2011 x86_64 x86_64 x86_64 GNU/Linux syslog-ng 2.1.4 I have following configuration: ... 9 options { 10 create_dirs (yes); 11 dir_group (root); 12 dir_owner (root); 13 dir_perm (0700); 14

Guys, I need to parse my dovecot log files with logstash grok patterns. Is there any document specifying the patterns used by dovecot to write it's logs? I need to find all the log possibilities that could be writed to log files by dovecot. So, if a document like that exists or if anyone could answer my question, I'll could make the parser with less difficult. -- Att. Bruno

puppet agent --verbose shows a verbose output of the changes done by puppet, such as: notice: /Stage[main]/Logstash::Config/Logstash::Configdir[agent]/File[/etc/logstash/agent/config]/owner: owner changed ''root'' to ''logstash'' notice: /Stage[main]/Varnish/Service[varnish]/ensure: ensure changed ''stopped'' to ''running''

Hi all. I am currently designing a server room. I would like to be able to draw a 2D (in the future 3D) project. Do you know any tools? Which one can you recommend? Best regards, Rafal Radecki.

Hi all. I am currently building a small test cloud based on Eucalyptus 2.0.3 and CentOS 5.8 x64. I have a choice which hypervisor to use: KVM or XEN. KVM is the default in CentOS 6 but I have read also many good things (for example PV guest machines, isolation between Dom0 and DomU) about XEN. Key factors from my opint of view are: - stability (which one runs more smoothly on CentOS?) -

Hi all. I am currently building a small test cloud based on Eucalyptus 2.0.3 and CentOS 5.8 x64. I have a choice which hypervisor to use: KVM or XEN. KVM is the default in CentOS 6 but I have read also many good things (for example PV guest machines, isolation between Dom0 and DomU) about XEN. Key factors from my opint of view are: - stability (which one runs more smoothly on CentOS?) -