Hello
Thanks for info but my case is different (I think!)
If I'm not wrong your configuration for NXLOG is to fetch live eventlogs,
in my case I have a huge archive (5TB) of windows logs that have been
already exported as text file, so I'm not accessing the live eventlogs on a
windows system.
Can you explain or show what the difference is for 2008/2012 or did I
misunderstand you and the config you describe below applies also to
2008/2012?
Thanks,
- Marco
On 06/01/2015 12:41 PM, Arie wrote:
That is one way to do it, this works up to server 2003, server 2008
and so on is a little d
That is one way to do it, this works up to server 2003, server 2008 and so
on is a little different,
this way there is better handling of the logs.
define ROOT C:\Program Files\nxlog
#define ROOT C:\Program Files (x86)\nxlog
Moduledir %ROOT%\modules
CacheDir %ROOT%\data
Pidfile %ROOT%\data\nxlog
Thanks Henrik.
Lol - I remember a crazy party with lots of crazy zabbix guys and lots of
champagne!
I never found the ring and I am now on my forth in five years!
regards
On Monday, June 1, 2015 at 7:25:21 AM UTC+1, Henrik Johansen wrote:
>
> Exactly :)
>
> Also keep in mind that message
Thanks to everyone for continuing to pursue this odd issue.
Arie - We are using nxlog-ce version 2.9.1347
Kay - I can't seem to recreate the problem (yet) in a test environment,
whether 1.0.2 or 1.1.0. There are some (possibly irrelevant) differences
between test and production, but I'll menti
Jesse,
We've just tried to reproduce this issue on 1.1.0-RC.1 but it works as
expected.
Could you give that a try in a test environment, please?
Thanks,
Kay
On Saturday, 30 May 2015 13:42:52 UTC+2, Bernd Ahlers wrote:
>
> Jesse,
>
> thank you for the update. I created an issue in GitHub for th
Hi Aidan,
bulk operations on streams are currently not possible in Graylog.
Cheers,
Jochen
On Sunday, 31 May 2015 21:32:02 UTC+2, Aidan Venn wrote:
>
> Hi,
>
> Lets say I want to select 12 streams to pause at once.
>
> How can this be done through the webUI?
>
> I`ve tried the usual of holding
Hi Ankur,
did you create a Syslog UDP or a Syslog TCP input in Graylog and made sure
that those are accessible from outside the virtual machine?
For the configuration of rsyslog for sending messages to Graylog, please
refer to our documentation at
http://docs.graylog.org/en/1.0/pages/sending_d
Hello,
I have imported 3 OVA virtual appliances (latest version i.e 1.0.2) in
VMware esx 5.5 . On 1st machine I configured it as server with command
(graylog-ctl reconfigure-as-server) On 2nd machine I configured as
datanode (graylog-ctl-reconfigure-as-datanode) on 3rd machine I configured
t
Hi Brandon,
I see now what you and Henrik mean. That’s a far more suitable solution and
one I will start to have a look at.
My original approach / mind-set wasn`t correct.
Thanks for yours and Henriks help.
I`ve been playing with graylog for about 10 days on and off now and loving
it!
K
Hello
Found the issue as well, only the message is by default exported so I had
to create an extractor to override the default "message" with the full
message
I used the split and index, using {" as splitting characters
Thanks!
Mark
On Sunday, May 31, 2015 at 1:49:07 AM UTC+10, graylog...
Bernd,
looks like it is solved in 1.10.4-rc1. Thank you.
On Thursday, May 28, 2015 at 5:54:33 PM UTC+2, Bernd Ahlers wrote:
>
> Arie,
>
> thanks for he report. There is an issue and a pull request to fix the
> issue on GitHub.
>
> https://github.com/Graylog2/graylog2-web-interface/issues/133
Hello
Found the issue, it was the configuration of NXLOG, I had to tell NXLOG
that the input was multiline and the headline/endline were {}, I changed
the nxlog.conf as below:
Module xm_gelf
Module xm_multiline
HeaderLine /^{/
EndLine /^}/
Module
13 matches
Mail list logo
