1
answer
new

nxlog + graylog + evtx file (Netapp)

Dear support ,

i am trying to monitor my netapp cifs audit .

What i have:

1. the share to netapp file audit_cifs_svm_last.evtx

2. Graylog last version

3. nxlog enterprise evaluation
There is any options to monitor the evtx file and drop it to graylog with non gibberish characters in the messages - see below

 

Thanks

Support ticket opened onAugust 9, 2017 - 1:56pm
8
answers
active

Error 1401. System error 87. When trying install under win32process

MSI (s) (E4:9C) [19:13:39:684]: Product: NXLog-CE -- Error 1401. Could not create key: S-1-5-21-1688939787-1905098679-239004068-17022\Software\Microsoft.  System error 87.  Verify that you have sufficient access to that key, or contact your support personnel.

Error 1401. Could not create key: S-1-5-21-1688939787-1905098679-239004068-17022\Software\Microsoft.  System error 87.  Verify that you have sufficient access to that key, or contact your support personnel.

when using this method as part of a script...

Support ticket opened onMarch 29, 2017 - 6:35pm
9
answers
active

MSSQL Datetime field overflow

We are evaluating NXLog as log forwarder from Windows to Linux. In addition, we want to NXLog to extract logs from tables in MS SQL Server. It looks promising and we plan to buy NXLog Enterprise if we can solve this issue regarding time conversion.

I've setup a new test table in MS SQL Server 2016 and use nxlog to supervise the table. I get a similar error as before. I also posted my issue on the email list for Community Edition. Do you have any solution?

I've attached DB Schema, table content and nxlog.conf.

Error code when I enter the last row 'erik':

Support ticket opened onMarch 9, 2017 - 10:58am
2
answers
active

Laptop Problem with Socket Connection

We are using the community edition and are having this problem with Windows 7 laptops:

Support ticket opened onFebruary 28, 2017 - 7:10pm
4
answers
active

Issue with nxlog Windows service

Hello,

It seems that there is some kind of conflict or bug in nxlog-ce-2.8.1248 (I'm not sure about earlier versions) where, upon boot, nxlog gets stuck in a loop initiating connections to a remote machine (Logstash in my case using om_tcp).

I only became aware of this after installing nxlog on server that had the group policy "Audit Filtering Platform Connection" enabled on successful connections; this actually generated so many events that it filled up my elasticsearch cluster (I've attached a sample of the event the filled the cluster).

Support ticket opened onSeptember 17, 2014 - 3:40pm