Learn how to forward logs to Graylog using NXLog in this quick guide. We’ll cover NXLog Agent configuration for the output compatible with Graylog (GELF) via centralized fleet management of the NXLog Platform.
Video Tutorials
RESOURCES
Video Tutorials
This video demonstrates how to grab popular Postfix MTA logs with NXLog Platform for centralized log management.
This video demonstrates configuring Bacula backup software and NXLog Agent for remote logging, centralized archiving.
In this video, you’ll learn how to enable and configure two-factor authentication (2FA) to enhance account security and protect your logging environment from unauthorized access.
In this step-by-step tutorial, learn how to seamlessly migrate from NXLog Manager to the NXLog Platform - modern telemetry pipeline and log management solution.NXLog Manager to Platform Migration Guide: https://docs.nxlog.co/platform/current/nxlog-manager-to-platform-migration.html
Discover how to use the Log Flow feature in the NXLog Platform to visualize your log collection pipeline with ease. This video demonstrates how Log Flow provides a clear, intuitive overview of your log architecture, including inputs, outputs, and processing steps. Learn how to navigate the Log Flow interface, understand the connections between log sources and destinations. simplify troubleshooting and optimize your log collection setup. Perfect for gaining better insight into your log pipeline architecture!
In this video, we’ll walk you through the step-by-step process of collecting logs from Proxmox and storing them on the NXLog Platform. Whether you're managing a small virtual environment or a large-scale infrastructure, this tutorial will show you how to seamlessly integrate Proxmox logs into your centralized logging system using NXLog.
Learn how to manage users effectively in the NXLog Platform! This video covers creating users, understanding user roles, and assigning roles and permissions to ensure proper access control and security.
Learn how to configure OPNsense Firewall and NXLog Agent for remote logging and log archiving for secure, centralized monitoring and compliance.
Learn how to seamlessly collect Windows logs and send them to Microsoft Sentinel using the NXLog Platform. This step-by-step guide demonstrates how to set up the integration effortlessly with the Sentinel Solution Pack, ensuring a smooth and efficient log pipeline. Watch now to enhance your security monitoring with this powerful setup!
Learn how to configure a Synology NAS and an NXLog Agent for remote logging and log archiving. This step-by-step guide will walk you through setting up log forwarding from your NAS to NXLog Platform, ensuring efficient log collection, storage, and management. Watch now to enhance your logging and monitoring setup!
Learn how to efficiently search log events stored in the NXLog Platform database using Full-Text Search and Advanced Mode with SQL-like queries. This step-by-step tutorial will guide you through performing quick Full-Text Searches to find specific log values, using Advanced Mode for more precise queries, and filtering search results to refine your insights. Watch now to enhance your log management and troubleshooting workflow!
Learn how to configure pfSense Firewall and the NXLog Agent for remote logging, ensuring secure and efficient log storage on the NXLog Platform. This step-by-step guide will walk you through the setup process for seamless log management!
This video guides you through migrating your existing NXLog EE/CE configurations to the NXLog Platform. Learn the step-by-step process to ensure a smooth transition with minimal effort!
Learn how to send IPFire firewall logs to the NXLog Platform for centralized collection and analysis. This step-by-step tutorial will guide you through configuring IPFire to forward logs and setting up NXLog Platform to receive and store them. Watch now to streamline your firewall log management!
Learn how to send log events from an OpenWRT router to an NXLog agent and store them in the NXLog Platform. This step-by-step guide will show you how to configure your router to forward logs over the network to a syslog server (NXLog agent), making the process applicable to other router brands with similar capabilities. Watch now to streamline your log collection and monitoring!
In this video, you’ll learn how to use NXLog Platform’s automatic agent enrollment feature. We demonstrate the difference between manual and automatic enrollment, highlight how NXLog Platform can streamline the process by automatically enrolling and configuring agents based on your custom rules. You'll see how to create and use auto-enroll rules, making it easier and more efficient to manage a large number of agents.
In this video, you will learn how to configure a transport relay agent using NXLog Platform’s visual configuration builder. The tutorial shows how to set up an agent that receives log data via UDP, TCP, SSL, and NXLog's own batchcompress protocol, and forwards the data to NXLog Platform. Following these steps ensures a convenient way to configure efficient and secure log forwarding in your environment.
In this video, you will learn how to create and configure a multi-domain SSL certificate for NXLog Platform using OpenSSL. The tutorial walks you through generating a CSR and private key for multiple subdomains and then importing the signed certificate into the OS where NXLog Platform is installed. This ensures secure communication across all subdomains used by NXLog Platform.
This video demonstrates the installation of NXLog Agent and how to configure it to connect it to NXLog Platform. You’ll learn how to modify the agent's configuration, connect it with NXLog Platform, and set up Windows log collection. The tutorial also covers securing communication between the NXLog Agent and NXLog Platform and sending logs to multiple destinations.
This video guides you through the deployment of an on-premises NXLog Platform instance. It covers each step in the installation process, from preparing your environment to setting up all necessary components. By following this tutorial, you'll ensure a successful installation of NXLog Platform for efficient log management.
In this video, you'll learn how to sign up for NXLog Platform. We guide you through account creation, authentication setup, and confirmation, ensuring you're ready to use NXLog's comprehensive logging solution. Follow along for a seamless sign-up process.
Application administrators may face various challenges when dealing with Kubernetes logging, one of them being that its flexibility and failure-recovery feature make data inside the cluster highly volatile. In this video tutorial, we demonstrate how to collect Kubernetes Cluster Logs using NXLog Enterprise Edition to tackle such challenges.
Explore how, as a system engineer, you can use the included macULS module to capture events directly from the macOS Unified Logging System. In this tutorial, Seth will showcase how NXLog Enterprise Edition and the included macULS module can be configured to capture several common user activities macOS administrators are often interested in, including user login, user logout, and privileged process execution.
A major cyberattack against Industrial Control Systems can not only pose a risk to valuable data and economic losses, but also a threat to human safety. Log monitoring became crucial to prevent these security breaches and NXLog Enterprise Edition brings reliability, flexibility, and ease of use in log collection known in other IT areas to the ICS/SCADA world. Watch now this demo on collecting ModBus protocol data and SCADA management logs from AVEVA SE CITECT SCADA and how you can send them to different destinations.More:Collecting logs from Industrial Control SystemsFlexible, cloud-backed Modbus/TCP log collection
With Passive Network Monitoring, administrators have the opportunity to capture network traffic from devices that are not configured or cannot be configured to forward network activity logs. This feature also lets security personnel to catch logs from rogue devices in the network that they might not be aware of.In this tutorial series, we'll be explaining the passive network monitoring abilities of NXLog Enterprise Edition to capture and log questionable network-related events such as Rogue DHCP Servers replies, unexpected ARP & ICMP Sweeps, and DNS Tunneling.The im_pcap module of NXLog Enterprise Edition provides support to passively monitor network traffic by generating logs for various protocols.
With Passive Network Monitoring, administrators have the opportunity to capture network traffic from devices that are not configured or cannot be configured to forward network activity logs. This feature also lets security personnel to catch logs from rogue devices in the network that they might not be aware of.In this tutorial series, we'll be explaining the passive network monitoring abilities of NXLog Enterprise Edition to capture and log questionable network-related events such as Rogue DHCP Servers replies, unexpected ARP & ICMP Sweeps, and DNS Tunneling.The im_pcap module of NXLog Enterprise Edition provides support to passively monitor network traffic by generating logs for various protocols.
With Passive Network Monitoring, administrators have the opportunity to capture network traffic from devices that are not configured or cannot be configured to forward network activity logs. This feature also lets security personnel to catch logs from rogue devices in the network that they might not be aware of.In this tutorial series, we'll be explaining the passive network monitoring abilities of NXLog Enterprise Edition to capture and log questionable network-related events such as Rogue DHCP Servers replies, unexpected ARP & ICMP Sweeps, and DNS Tunneling.The im_pcap module of NXLog Enterprise Edition provides support to passively monitor network traffic by generating logs for various protocols.
In this video, we are demonstrating file-based log compression and data at rest encryption with NXLog Enterprise Edition.Often when processing logs in an organization there may be a need to keep large amounts of logging data for extended periods of time on-premises. This may lead some administrators to send only select logs to their 3rd party SIEM while still needing to store all event logs elsewhere for archival, legal compliance, or other business needs for processing or review in the future. NXLog Enterprise Edition includes extension modules for both compression, and encryption to aid in both decreasing log storage burdens, and ensure that stored data is stored more safely, commonly known as data at rest protection.For more, read the documentation:Compression module (xm_zlib)Encryption module (xm_crypto)
In this tutorial, Seth will be demonstrating network connectivity and failover using a small lab environment consisting of a Windows machine (to generate events), five Linux servers for log collection, forwarding, and demonstrating failover situations, and another Linux server acting as a basic log ingestor that will display log data received and act as a mock SIEM to help us visualize log data.
The Splunk Universal Event Forwarder for Windows cannot collect ETW data. Other solutions can be used such as the NXLog im_etw module shown in this video. We show a demonstration of how you can use the NXLog ETW input module to collect and forward Event Tracing for Windows (ETW) data, write it in JSON structured data format, and forward it to Splunk.Use NXLog to collect other types of data on Windows and Linux platforms - from Windows EventLog to file-based log collection, file integrity monitoring, and more.
This short explainer video shows that you can collect and convert Windows EventLog to Syslog using NXLog. You can send the log output to a local file-system log file (shown in this video), to another server via TCP/UDP or to an external suite such as a SIEM.Generate log entries in the various Syslog formats - BSD Syslog, IETF Syslog, or Syslog extensions ArcSight Common Event Format (CEF), Common Event Expression (CEE), Log Event Extended Format (LEEF) or Snare.You can even extend Syslog and generate the log output as structured data such as JSON.
