I setup nxlog on windows 2008 , windows 2008 R2 , windows 2012 and windows 2016.
windows 2008 and 2008 R2 nxlog have some issue with connection with syslog server while 2012 and 2016 works perfectly fine.
> nxlog log file
Hello
I have a server that send logs (with nxlog-ce), that has 3 network interface (3 differents IPs). So any time that reboot server, I see (on my SIEM) incoming logs from a different IP. Is there a way to set on nxlog the default interface?
Hello everybody, I'm trying to filter Windows events log with severity/level only from warning to critical, so from level 1 to 3.
Unfortunately, I tried several configurations, but the agent is still forwarding all the events. Like if there were no filters.
My specifications are, Nxlog CE Agent (version 2.10.2102) on a Windows 10 64 bits build 1803 with this conf :
With reference to the following guide for sending NXLog output to Splunk using HEC:
https://nxlog.co/documentation/nxlog-user-guide#splunk-hec-collection
The NXLog community edition om_http is missing the add_http_header() procedure:
https://nxlog.co/docs/nxlog-ce/nxlog-reference-manual.html#om_http
Is there any way to recursively delete files with file_remove?
I have applications logging in the following structure:
We're able to define an input and collect the logs no problem with the following definition:
<Input Access_Logs>
