Hi,
Hostname comes from two sources, it can be already present in the
(sys)log, otherwise the gethostname(2) system call is used to retrieve
and set it.
Since you did not provide any information on how your input is processed
and what it looks like, it's kinda hard to help.
Regards,
Botond
On
Hello,
There were some posts earlier about the snare format and qradar
compatibility. If you search the list archives you should find some posts
that may help, there were even config files attached afair.
Regards,
Botond
On Wed, 18 Dec 2013 14:48:11 -0800
Tim Washburn wrote:
> Hi All
>
> I've
Hello,
The nxlog website will receive an overhaul in the near future as it is
quite shitty in my opinion too.
I'm looking for volunteers who would be ok with being listed under a
"Happy NXLog Users" section on the web page displaying the following
data:
* Company/organization name
* Logo
* Websit
Here is how everything is configured
JBoss syslog appenders (rsyslog appender shown as reference only)
--
Hi,
parse_syslog_bsd() will put the value parsed from the input into
$Hostname, otherwise (on parse error) it will default to the value
returned by the gethostname() system call.
Since there was no sample provided for the input, I can't really tell
more than what I wrote earlier. You could look a
I'm not sure what you're looking for for input, I can provide you what jboss
writes to the local file system logs or the logs that rsyslog writes both of
which show the hostname in the log and are written with the same log4j
converstion format filter, and name the log as hostname.log. I've changed
Hi all
I tried to use nxlog to send from windows server to graylog2.
I'm able now to send my event viewer log with im_msvistalog module and send it
with xm_gelf.
I need to parse local log file and it's not working properly with gelf... the
host is not ok since it's use the netbios name of the
Hi,
Try adding this:
Exec $Hostname = hostname_fqdn(); \
$SourceName = 'myGame'; \
$Severity = 3;
The severity values are as follows:
DEBUG1
INFO 2
WARNING 3
ERROR4
CRITICAL 5
Probably the next step is to write a regexp to parse the log to
extract the time, severity a
It's so easy when you get the answer :)
Can you provide more info about the regex part . I got as you said 2 part in my
log I'm interested. I want the severity and also the message after that. Does
multiline will be helpful with that? If you need any more info from my part I
can provide some as
Can nxlog create directories?
I would like to have something similar to "File '%LOGDIR%/' + $Hostname +
'/' +$dst + '.log'" (Which I've tried and nothing happens :)) No error, no
logs either.
--
Rapidly troubleshoot pro
10 matches
Mail list logo
