I have nxlog 2.10.1542 on centos 7.6
I am sending rfc 3195 events to the nxlog for forward to a siem
A snippet of the log that captures the error event is seen below.
2019-05-01 08:34:32 DEBUG evaluating expression 'field' at /opt/tap-nxlog/conf/nxlog.conf:128
2019-05-01 08:34:32 DEBUG evaluating expression 'field' at /opt/tap-nxlog/conf/nxlog.conf:129
2019-05-01 08:34:32 DEBUG successfully got priority
I have updated the NXLOG installation to version 2.10.2150 hoping that it will fix my issue. I have NXlogs installed on 6 servers and they are work fine except one server. Thi sis afile server so there are no application installed on it. On this server I get the following errors. When I manually restart the NXLOG service everything runs fine for few days and then NXLOG stops reporting logs. I appreciate assistance in trying to resolve this issue.
I transmitted IIS logs and message tracking logs from one server to the other through nxlog and saved it in a location.
After complete transmission I stopped the nxlog service.
I was able to understand that the transmission is complete and I downloaded the data and was working on it.
suddenly within 10 minutes few files are lost under IIS and message tracking.
I have a directory with multiple sub directories where I need to get logs from.
Under my original plan for getting all files types in a single directory, I can get it to work by appending "\\\*.log" for instance at the end of the path, but unfortunately it gets every log file and not just the ones I am looking for.
Is there a way to have NxLog Community Edition search through sub directories to find the files?
This is my lab setup: