Community Forum

Post a question
5
responses

How to fetch logs recursively, when the files may have a number of different file extensions?

I traverse /var/log/myAPPLICATION* like shown below to harvest everything below in the folder structure, which has .log as extension. The challenge is now: What if there are occurences of logfiles that have e.g. .txt extension? Is it possible to use some conditional to that File line in the Input directive? Something like

File "/var/log/myAPPLICATION/*.[log|txt]"

AskedOctober 8, 2020 - 12:11pm
1
response

Can anyone share experience/configs for nxlog community edition to forward security and authentication events from RHEL 7.x servers ?

We have installed nxlog community edition on Red Hat Enterprise Linux version 7.6. We included auth.conf but are not seeing any auth messages forwarded. I'm not understanding why Rsyslog is required since Rsyslog is capable for forwarding events by itself. Please share configs and experiences getting security and auth messages to forward.

AskedOctober 2, 2020 - 8:38pm
3
responses

Different ProcessID field values ​​in sysmon event

Hello!

I noticed that the value of the ProcessID field in sysmon event does not match the value of the ProcessID field which is nested in the Message field. Is it normal?

The sample sysmon event from https://nxlog.co/documentation/nxlog-user-guide/sysmon.html is bellow

AskedSeptember 24, 2020 - 11:38am
2
responses

om_python Module

Hi - pardon my ignorance

I would like to use the om_python module to run a Python script s3_write.py which outputs to an S3 bucket on AWS
I noticed the module wasn't included on the Community edition so I downloaded a trial of Enterprise and installed it, but im_python and om_python are not included with that either
Nor can I find anywhere to download that module.
How can I get hold of om_python please ?

Kind regards

AskedSeptember 23, 2020 - 3:39pm
1
response

Windows server 2008sp2

Installing nxlog to a 2008sp2 server. There is no C:\program files (x86) directory. Only Program Files. The service won't start because it is unable to find the program files (x86) directory. Are there other steps that need to be done to get this to work?

AskedSeptember 21, 2020 - 3:38pm

Pages