Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in
Syslog-ng practices & Web Log Viewver
View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Networking & Security
View previous topic :: View next topic  
Author Message
Flav
Tux's lil' helper
Tux's lil' helper


Joined: 11 Sep 2004
Posts: 91
Location: FRANCE /Montpellier

PostPosted: Sat Jul 02, 2016 8:03 pm    Post subject: Syslog-ng practices & Web Log Viewver Reply with quote

Hello Everybody,

First at all, i'm using syslog-ng for personnal router et logging networking devices redirected to server itself. I'm really new in this and I still looking for good tutorials or best practices on time (actually i'm using gentoo wiki with old setup but i'm a bit confuse between differents ways of using syslog-ng with systemd and self logging software, how to unify all services.
Then i would like find an easy way to read of theses logs oriented web interfaces, i'm looking for a web recent which shoud be free. Considering logsentry or syslog-ng php not maintened, i'm a bit difficult to not find that kind of interfaces, i feel like all news web log features are for commercial purpose only.
If there is System administrator that could purpose to me some software additionnal for web, i will be very interested to test them.

Thanks in advance,

Flav
Back to top
View user's profile Send private message
Syl20
Guru
Guru


Joined: 04 Aug 2005
Posts: 550
Location: France

PostPosted: Mon Jul 04, 2016 4:29 pm    Post subject: Reply with quote

systemd/journald are a real problem on my systems, at work. Even more when journald doesn't even know what a network syslog server is... :evil:
So I made some tweaks to facilitate the interactions between journald and syslog-ng :
Code:
# grep -v "^#" /etc/systemd/journald.conf

[Journal]
Storage=volatile
ForwardToSyslog=yes


In syslog-ng.conf :
Code:
source s_system {
   system();
   intenal();
};


The rest of the syslog-ng configuration depends on the number of boxes you have, and what you exactly want to do with their logs. But, for example, if you want to store all the logs on disks, on file by day, you can use a generic destination rule like this :
Code:
destination d_all {
   file("/mnt/logs/$HOST/$YEAR-$MONTH-$DAY.log" create_dirs(yes));
};


I don't use web interfaces, my company have secadmins somewhere else... And they only use commercial solutions : Balabit (syslog-ng OSE is a small part of their products) and IBM QRadar.
Back to top
View user's profile Send private message
frobert
n00b
n00b


Joined: 06 Jul 2016
Posts: 1

PostPosted: Wed Jul 06, 2016 6:34 pm    Post subject: Reply with quote

Hi, here you can find an overview of several web UIs that work with syslog-ng.
Regards,
Robert
_________________
Robert Fekete
syslog-ng documentation maintainer
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Networking & Security All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum