Request trial
Request Trial

Catch logging from Windows network drives issue

Tags:
#1 jasonkwwong

Hello everyone,

I would like to catch a log from windows network drives, but I cannot did it.

May I know it is supported by nxlog?  Would you please advise, thank you.

 

<Input filelogs>
    Module    im_file
    File    "\\\\192.168.1.1\\test\*"
    SavePos TRUE
    ReadFromLast TRUE
    PollInterval 5
    Exec $Message = $raw_event;
</Input>

NXLog.log:
2016-09-14 18:16:53 INFO nxlog-ce-2.8.1248 started
2016-09-14 18:16:53 ERROR failed to open \\192.168.1.1\test\*; Access is denied.  
2016-09-14 18:17:03 ERROR apr_stat failed on file \\192.168.1.1\test\*; Access is denied.  
2016-09-14 18:17:13 ERROR apr_stat failed on file \\192.168.1.1\test\*; Access is denied.  
2016-09-14 18:17:23 ERROR apr_stat failed on file \\192.168.1.1\test\*; Access is denied.  
2016-09-14 18:17:33 ERROR apr_stat failed on file \\192.168.1.1\test\*; Access is denied.  
2016-09-14 18:17:53 ERROR apr_stat failed on file \\192.168.1.1\test\*; The filename, directory name, or volume label syntax is incorrect.  
2016-09-14 18:18:33 ERROR apr_stat failed on file \\192.168.1.1\test\*; The filename, directory name, or volume label syntax is incorrect.  
2016-09-14 18:19:43 ERROR apr_stat failed on file \\192.168.1.1\test\*; The filename, directory name, or volume label syntax is incorrect. 

The share drvice is able to access by everyone, or guest.

Permalink
#2 b0ti Nxlog ✓ (Last updated )
#1 jasonkwwong
Hello everyone, I would like to catch a log from windows network drives, but I cannot did it. May I know it is supported by nxlog?  Would you please advise, thank you.   <Input filelogs>     Module    im_file     File    "\\\\192.168.1.1\\test\*"     SavePos TRUE     ReadFromLast TRUE     PollInterval 5     Exec $Message = $raw_event; </Input> NXLog.log: 2016-09-14 18:16:53 INFO nxlog-ce-2.8.1248 started 2016-09-14 18:16:53 ERROR failed to open \\192.168.1.1\test\*; Access is denied.   2016-09-14 18:17:03 ERROR apr_stat failed on file \\192.168.1.1\test\*; Access is denied.   2016-09-14 18:17:13 ERROR apr_stat failed on file \\192.168.1.1\test\*; Access is denied.   2016-09-14 18:17:23 ERROR apr_stat failed on file \\192.168.1.1\test\*; Access is denied.   2016-09-14 18:17:33 ERROR apr_stat failed on file \\192.168.1.1\test\*; Access is denied.   2016-09-14 18:17:53 ERROR apr_stat failed on file \\192.168.1.1\test\*; The filename, directory name, or volume label syntax is incorrect.   2016-09-14 18:18:33 ERROR apr_stat failed on file \\192.168.1.1\test\*; The filename, directory name, or volume label syntax is incorrect.   2016-09-14 18:19:43 ERROR apr_stat failed on file \\192.168.1.1\test\*; The filename, directory name, or volume label syntax is incorrect.  The share drvice is able to access by everyone, or guest.

This is a permissions issue and is not directly related to NXLog per se.

You should make sure that the local SYSTEM account that NXLog is running under has proper permissions to access the network share.

See this question on serverfault for example.
Login to see more

Subscribe to our newsletter to get the latest updates, news, and products releases.

© Copyright 2024 NXLog Ltd.

PRIVACY POLICY GENERAL TERMS OF BUSINESS