0
responses

NXLog Installer package

I have Nxlog exe with config file and bunch of Powershell scripts to be executed part of config file. I want to create one MSI package with all those files for easy installation. I have tried some methods but nothing seems to be working.

Can any one suggest here with the process of creating MSI for NXLog ( it includes .exe + certs + config + Powershell scripts )

AskedFebruary 10, 2021 - 9:44am
3
responses

nxlogs & ESX6.5

Hello,

I have installed nxlogs on my infrastructure.
I can catch the logs from all my servers Windows, Linux, Vcenter 6.5, exept for the ESX servers 6.5.
Is nxlogs compatible with ESX 6.5 ? because when I read admin guide, they speak about vcenter but not ESX.

Best regards,

Guy

AskedFebruary 8, 2021 - 7:44pm
0
responses

pm_norepeat module

Hi,

i'm trying to use this module (server side), seems all ok, but this processor generate an event with user "nxlog-ce" and messages like "event repeated n times"
it's possible to drop this message?

Thanks You

------------------

<Processor norepeat>
Module pm_norepeat
CheckFields Hostname, Message
</Processor>

-------------------

AskedFebruary 8, 2021 - 7:27pm
2
responses

What parameters to use to ingest data in elasticsearch if has security enabled

Hi team,

I have opendistro elasticsearch installed and has a password to ingest data; I am using nxlog community version to send json data directly in elasticsearch. However I am not finding any relevant option for username password for om_elasticsearch module

Any clue?

AskedFebruary 8, 2021 - 7:33am
2
responses

Decode PacketData from Microsoft DNS Server Analytics Logs

I have setup NXlog for purpose of consuming DNS analytical events and forwarding to a NDR solution. I'm using im_etw as the input and parse to syslog with xm_syslog and om_file. The output is to a file stored locally on the DNS server.

When I take a closer look at event IDs 256 and 257, DNS analytical log provides some interesting field such as source, query and packet data, which seems to be a hex value of query or response.

AskedFebruary 8, 2021 - 2:02am

Pages