0
responses

Can't receive syslog from remote web-based app

There's a remote web-based app that can send syslog to an Ip/port. I've installed nxlog on my system and my current nxlog/conf/nxlog.conf file contains these lines

<Input in>
Module im_tcp
Host 0.0.0.0
Port 1514
Exec parse_syslog();
</Input>

AskedAugust 6, 2022 - 4:32am
0
responses

NXLog CE 3.0.2284 Crashed After Graylog Reboot

Hi everybody,

I upgraded my whole domain to Graylog 3.0.2284 yesterday, and decided to reboot my Graylog Server to clear all the RAM etc on it.

When I restarted the Graylog Server, all the updated host got their NXLog service to "terminate unexpectedly" (info from EventID 7034, Windows Event Log).

No information in the nxlog log file, and I needed to start all my services manually.

What's wrong...?

Thanks!

AskedAugust 5, 2022 - 12:36pm
0
responses

Authenticate macOS senders over TLS with certificates in System Keychain?

Hello,

We are deploying NXLog Enterprise on a fleet of macOS devices with the goals to collect endpoint events even remotely. Which mean Graylog GELF exposed over Internet, with TLS encryption and certificate authentication requirements.

I see that om_ssl can do the job of TLS communication and even client authentication, but the settings I see are using file path for the Private Key.

AskedAugust 5, 2022 - 11:43am
1
response

System or Team Identifiers for MacOS and JAMF?

Has anyone used JAMF to distribute this to Macs?

We are rolling out NXLog to our Macs. I have the installer working, but don't have any security info to configure things like PPPC or System Extensions. I was able to manually tick the box for Full Disk Access, but I am still getting an error message saying that im_maces|in NXLog requires Transparency, Consent, and Control (TCC) approval to connect to Endpoint Security.

AskedAugust 5, 2022 - 12:38am

Pages