Community Forum

2
answers

DamnPeggy

Windows event filtering not working? Or something else

Hello, I have recently been trying up a syslog-ng server for various devices and have tried a couple of things for sending Windows Events to the server.

Finally decieded that NXLog will do what I need and I have gotten sent some events over without much configuration, but when trying filter within the .conf file, it always fails. I can't really find much good information as to why it might be failing, as it seems that it should be correct.(to me anyway)

AskedFebruary 18, 2019 - 7:41am

1
answer

spoaharty

Configuring OPSEC LEA for Enterprise version

Getting error: Opsec error. rc=-1 err=-96 Connection error
step 4 on the user guide page 706

anyone run into issues pulling certs or suggestions? I can telnet using the port no issues, but not able to pull certs. steps prior were all completed.

OPSEC LEA,
enterprise,

AskedFebruary 15, 2019 - 11:11pm

1
answer

gowthamkaruturi

windows mutline event log not being parsed by nxlog

Hi,
I have the following windows log message which i am trying to parse and remove the \r,\t and \n from the log. with i am using i am unable to parse it and it still shows me the log content as is?

nxlog multiline issue,

AskedFebruary 12, 2019 - 3:25am

0
answers

LogWolf

NXLg with om_ssl using a 3rd party cert`

I'm trying to set up nxlog with om_ssl using a 3rd party cert. I can connect without issue using openssl s_client, but am getting a certificate error in nxlog.

AskedFebruary 11, 2019 - 6:31pm

0
answers

micsnare

nxlog 4-99-4527 (evtx files)

hi all,

not sure if you can help me, but I recently installed the latest (beta) version of nxlog 4-99.4527 to test the multiple evtx files support.
my config looks like this:

<Input eventlog>
Module im_msvistalog
File "C:\Users\test\Desktop\logs\*.evtx"
</Input>

evtx logs nxlog4,

AskedFebruary 11, 2019 - 3:06pm

You are here