Thanks @Matt Sicker<mailto:boa...@gmail.com> for your reply
But 2 of my problems remains unresolved 1) How can i add hash of the log itself and send it with log itself as a Log field so that we can verify it for tampering at a later stage 2) How can i aggregate log events for count along with log itself such that I can get the Log event and a count as a field in a window. So basically want to do windowed aggregation of logs before flushing Burst filter was more of controlling logs rather than aggregating Please let me know how it can be achieved Thanks Sushil Pratap Singh ________________________________ From: Matt Sicker <boa...@gmail.com> Sent: 24 February 2020 20:25 To: Log4J Users List <log4j-user@logging.apache.org> Subject: Re: Query Regarding Log4j audit framework Not sure about 1. For 2, there’s the burst filter in log4j2 which supports that type of thing in general. As for 3, take a look at the various appenders available like Syslog/Socket/HTTP/JDBC. On Mon, Feb 24, 2020 at 00:26 Sushil Singh <sushil.si...@thalesgroup.com> wrote: > Hi > > > I want to use log 4j audit for multiple applications but I have certain > requirements > > 1) I want to add some function to logs such that hash of log messages can > be sent along with log message itself > 2) Is there a way to club same kind of Logs occuring frequently in a small > window of time > 3) Is there something we can use log api events to log to server also > > please let me know how these can be achieved > > Thanks, > > Sushil > > -- Matt Sicker <boa...@gmail.com>
