Hello,
we would need some assistance with sizing a virtual syslog-store-box that should handle approximately 5000 clients, mostly divided in windows and linux server (only audit logs) Specifically, we require an SSB that can handle 4,000 events per…
Seeking advice to on the following :
Q) Can Syslog-ng PE (7.0.29) be setup as a Relay server, ingesting LSH log data using *default-network-source driver which then pipe towards a central Syslog-ng StoreBox (6.0.4)?
Example config done :
source sdnd …
Hello,
I am fairly new to this and trying to figure out why syslog-ng is unable to read from a TCP/UDP port.
Syslog-ng is running on a server that has multiple interfaces and two of the interfaces have IP addresses assigned to them. We are receiving…
We have logs that comes from a log aggregator, so they are coming from a single source. We are sending the logs to file destination, which our SEIM is monitoring the root of the folder to detect the new files. Our current default config is as below,
…
I would like to forward logs to a centralized collector behind a proxy. The layout would look something like this: client > server relay > proxy server > internet > main collector. I am having trouble finding a destination driver that will…
Hi forum readers,
I'm trying to use the oracle driver to obtain the events from the Oracle table "sys.dba_common_audit_trail" at regular intervals but avoiding the potential of retrieving the same log more than once (duplication). So far…
Hi, I've been trying to find a Sales person for Syslog-ng premium. I fill out the form on the One identity web page, but no one ever contacts me.. Does anyone have direct number to sales for syslog-ng premium?
Thanks
What I have:
1. Syslog-NG on Centos 7.9
syslog-ng 3.5.6
Installer-Version: 3.5.6
Revision:
Compile-Date: Dec 30 2015 19:57:24
Available-Modules: affile,afprog,afsocket-notls,afsocket-tls,afsocket,afstomp,afuser,basicfuncs,confgen,cryptofuncs,csvparser,dbparser…
Hi team ,
it is a pleasure to write to you, i need to discuss on syslog-ng issue .
We have many client syslog-ng service , and we got this error :
```
ERROR:/syslog-ng/pe-builder-image/syslog-ng-pe-project-7-0/syslog-ng-core/lib/logpipe.h:339:log_pipe_queue…
Recently I've installed Syslog-NG PE.
I need to forward events from Windows Servers to WEC.
I have carefully followed all steps from administration guide.
At the beginning the connection was established (Windows 10 -> CentOS 7 with WEC), but in the…
Syslog-ng is collecting cisco switch , routers and firewall data, which needs to be sent to ELK.
Before sending, how can i format logs into JSON
Greetings,
I have a question about how syslog-ng check specific host alive, does syslog-ng have this function?
For example, if I have three hosts, how can I know which host is disconnected, where to show the disconnected host?
Pong Chang
Best rega…
Hi, folks at Balabit/One Identity,
In the Syslog-ng Store Box 6.0 configuration for Cipher Suite, we can configure Syslog-ng web application Cipher Suite Security Level to Secure.
(Basic Settings > Management > Web Interface and RPC API Settings)…
I am trying to educate myself on syslog-ng product configuration, and hope someone will be kind enough to verify my understanding of the syslog-ng configuration file (between line 100-120) below.
1) Line 101-103, the purpose is to read unfiltered messages…
Hi, folks at Balabit/One Identity,
We are in the middle of security evaluating for Syslog-ng PE and Syslog-ng Store Box.
For Syslog-ng to place in my environment, the system will need to be secure.
Is Syslog-ng PE and Store Box following any System Hardening…
Syslog-ng has an advanced internal logging mechanism. In case of event info, warning, error, fatal or debug messages are generated. All messages generated internally by syslog-ng use a special source called internal(). Syslog-ng…
