Hi guys,

I need help about NXlog with graylog, on my 2008 server my nxlog send correctly log to my graylog server but i cant see lvl and facility off all logs :-(. like :

facility : Unknown and level Invalid [-1]

plz see my nxlog config :

 <Extension gelf>
Module xm_gelf
</Extension>
 
 <Extension syslog>
    Module    xm_syslog
</Extension>

<Input eventlog>
Module im_msvistalog
# this kinda works for me, put * to get everything
Query <QueryList>\
<Query Id="0">\
<Select Path='Application'>*[Application/Level=2][Application/Level=3][Application/Level=1]</Select>\
<Select Path='System'>*[system/Level=2][system/Level=3][system/Level=1]</Select>\
<Select Path='Security'>*</Select>\
<Select Path='Setup'>*</Select>\
</Query>\
</QueryList>
</Input>

<Output out>
    Module      om_udp
    Host        10.0.0.202
    Port           9000
</Output>

<Route 1>
    Path        eventlog => out
</Route>

btw i tried to use GELF out type but all messages in graylog was ���������������

hope u will help me

Regards,

Gael