Compress the Windows eventlog during the tranmission
Tags:
#1
steven.su
Hi,
I want to use nxlog to collect the windows eventlog, gzip the log and transform it to logstash for further processing. Is it possible to include all the steps into one pipeline?
e.g., Input module -> Collect eventlog (im_msvistalog) Output module -> Compress the log (xm_zlib) and send it to Logstash (om_tcp)
Thank you.
Best regards, Steven
#1
steven.su
Hi,
I want to use nxlog to collect the windows eventlog, gzip the log and transform it to logstash for further processing. Is it possible to include all the steps into one pipeline?
e.g.,
Input module -> Collect eventlog (im_msvistalog)
Output module -> Compress the log (xm_zlib) and send it to Logstash (om_tcp)
Thank you.
Best regards,
Steven
Hey,
Unfortunately, compression is absent in NXLog Community Edition. So far, it's present in NXLog Enterprise Edition with xm_zlib module, providing gzip compression..
Other than that - may I ask what kind of processing you want to perform in Logstash? Perhaps you could avoid it and reach the same goal without employing additional tools?
Best regards,
Raf
