News and Blog

4 Feb 2014

The new release brings a WTMP parser

The new release, 2.7.1189 brings a WTMP parser module and a dozen other fixes and enhancements. The following is an excerpt from the changelog:
 
The LICENSE has changed.
Added a new extension module to parse binary wtmp files on Linux.
Fixed a regression causing a crash after the 'failed to determine FQDN hostname' error message.
The to_syslog_*() procedures can now use $raw_event if $Message is unset to make it easier to convert to syslog.
Added a fix to im_msvistalog to handle the "EvtNext failed with error 13: The data is invalid." error better.
The im_file module now emits the last event when using with the xm_multiline extension.
By WTMP, New releaseRead more...
29 Oct 2013

Several stabilization fixes are available in 2.6.1131

The detailed changes are as follows:
Service control manager could not properly shut down the service on windows2003 and possibly other windows versions. This could have resulted in unsaved positions and duplicated log collection on system restart.
Fixed a panic in nx_config_cache_write() during shutdown.
Fixed an assertion failure when pm_pattern was trying to set an invalid datetime field.
The installer adds 'eventlog' as a dependency for the nxlog service.
Some error conditions (e.g. The interface is unknown, Access is denied, Invalid parameter, etc) should be handled better now by im_mseventlog.

By log management tools, update, log collectionRead more...
4 Jul 2013

Parsing key-value Pairs in Log Messages

Version 2.5.1089 has been released. There is a new extension module xm_kvp which makes it a lot easier to parse key-value pairs in log messages produced by many log sources.
This release includes several other enhancements and bug fixes, please consult the changelog for the details.

By KVP, log messagesRead more...
2 May 2013

Now works on AIX

Version 2.4.1054 has been released. This version now compiles and works on IBM AIX and should be fine on Solaris as well. This release contains numerous stabilization and bug fixes, consult the ChangeLog file for the detailed list of changes.

By AIXRead more...
12 Mar 2013

Advanced log correlation

Version 2.3.1027 has been released today. This version brings a new processor module named pm_evcorr which provides event log correlation functionality in addition to the already available nxlog language features (variables and statistical counters). This module was greatly inspired by the Perl based sec.pl simple event correlation tool.
In addition to the above the following fixes and enhancements are available in this release:

By New release, log correlationRead more...

Pages

Categories
Tags
New release NXLog Enterprise Edition nxlog NXLog Community Edition certification JSON log management log messages NXLog Manager partner user guide Windows AIX centralized log collection Centralized logging collect logs conditional buffering debug log DNS Elasticsearch