Hello,
I'm trying to send Windows events to two different syslog servers.
I have two output modules and one route. I see syslog packets getting sent to both collectors but the packets are not coming in the correct format
The configuration looks like
LogLevel INFO
Logfile %LOGDIR%/nxlog.log
I have an XML that I am trying to strip some data out so it can be pre-processed by software on another machine. XML file is being generated on a windows logging to an XML file. I am at bit of a lost I have tried too many things to list here. What I am trying to do is remove our domain name and our domain email address before it is sent to the machine to be pre-processed. I only want the username.
Hey All,
A bit of a newbee and trying to get NXLOG working with GrayLog. It is working and I'm seeing the information. The issue is that the information I'm seeing does not seem to match the PC's event logs.
Please see below Config File:
<Extension _exec>
Module xm_exec
</Extension>
<Extension _fileop>
Module xm_fileop
HTTP ERROR: 503
Problem accessing /nxlog-manager. Reason:
Service Unavailable
New install. Not sure why this is fighting me :)
Hi,
we are using nxlog-ce-3.0.2272 on Linux (CentOS 7), after a server reboot nxlog is not started. The error message in nxlog logfile is:
ERROR: couldn't open pidfile /run/nxlog/nxlog.pid.
After the reboot of the server the directory /run/nxlog is missing, which seems to cause the error.
The directory is created when nxlog-ce is installed on the server and nxlog is started OK.
