1
answer

Weird NXLOG behavior sending wrong data

I installed NXLOG onto our windows server. I setup INPUT to send the c:\squid\var\logs\access.log to our graylog server.

I restarted the NXLOG service.

On the graylog service, i still keep getting windows event log instead of the squid proxy logs.

Has anyone encountered this before?

 

AskedFebruary 5, 2016 - 10:57am
1
answer

ERROR invalid keyword when I tried parse logs with regex.

Hello ,

     I'm trying get specific data from some logs of hadoop with REGEX and I recieved this error: ERROR invalid keyword: Output at C:\Program Files (x86)\nxlog\conf\nxlog.conf:45

      Here is my config file:

AskedFebruary 4, 2016 - 9:00pm
0
answers

Eventlog UserID don't contain SID but user name

There is bug in im_msvistalog.c (around line 560):

if (ConvertSidToStringSid(imconf->renderbuf[EvtSystemUserID].SidVal, &sidstr))

{

nx_logdata_set_string(logdata, "UserID", user); <<< There Should be sidstr instead of user

LocalFree(sidstr);

}

 

 

AskedFebruary 4, 2016 - 10:46am
1
answer

Nxlog memory issue?

We are using Windows event collector which is pulling in from over 400 hundred servers. We have configured both disk and memory buffers and looks like nxlog peaks at 2GB memory and then starts to crash and no longer sends logs. I am seeing the following messages in the nxlog log.

When using mem only buffer

AskedFebruary 1, 2016 - 6:05pm
1
answer

How to install in AIX

Hello, is there any guideline for install the community edition in AIX?

AskedFebruary 1, 2016 - 10:14am

Pages