#1 mpark916 4 years ago

Here are the error messages:

2019-10-30 11:38:17 INFO nxlog-ce-2.10.2150 started 2019-10-30 11:38:22 WARNING stopping nxlog service 2019-10-30 11:38:22 WARNING nxlog-ce received a termination request signal, exiting...

Conf file:

define ROOT C:\Program Files (x86)\nxlog

Moduledir %ROOT%\modules CacheDir %ROOT%\data Pidfile %ROOT%\data\nxlog.pid SpoolDir %ROOT%\data LogFile %ROOT%\data\nxlog.log

<Extension _gelf> Module xm_gelf </Extension>

<Input in> Module im_msvistalog ReadFromLast TRUE

For windows 2003 and earlier use the following:

Module im_mseventlog

Query <QueryList>
<Query Id="0">
<Select Path="Application"></Select>
<Select Path="System"></Select>
<Select Path="Security">*</Select>
</Query>
</QueryList> </Input>

<Output Graylog> Module om_udp Host secret Port secret OutputType GELF_UDP </Output>

<Route 1> Path in => Graylog </Route>

Permalink

#2 manuel.munozDeactivated Nxlog ✓ 4 years ago

#1 mpark916

Here are the error messages: 2019-10-30 11:38:17 INFO nxlog-ce-2.10.2150 started 2019-10-30 11:38:22 WARNING stopping nxlog service 2019-10-30 11:38:22 WARNING nxlog-ce received a termination request signal, exiting... Conf file: define ROOT C:\Program Files (x86)\nxlog Moduledir %ROOT%\modules CacheDir %ROOT%\data Pidfile %ROOT%\data\nxlog.pid SpoolDir %ROOT%\data LogFile %ROOT%\data\nxlog.log <Extension _gelf> Module xm_gelf </Extension> <Input in> Module im_msvistalog ReadFromLast TRUE For windows 2003 and earlier use the following: Module im_mseventlog Query <QueryList> <Query Id="0"> <Select Path="Application"></Select> <Select Path="System"></Select> <Select Path="Security">*</Select> </Query> </QueryList> </Input> <Output Graylog> Module om_udp Host secret Port secret OutputType GELF_UDP </Output> <Route 1> Path in => Graylog </Route>

Hi Shawn!

Would you mind pasting the most recent content of nxlog.log?

The log files are not providing me enough information to figure out whats wrong!!

For windows 2003 and earlier use the following:

Module im_mseventlog