Converse agora com nosso suporte

Obtenha ajuda em tempo real
Concluir registro

Entrar

Solicitar preços

Entre em contato com o setor de vendas

syslog-ng Premium Edition 6.0.24 - Administration Guide

Navegação de conteúdo

Target audience and prerequisites Products covered in this guide Typographical conventions About this document

Chapter 1. Introduction to syslog-ng

What syslog-ng is What syslog-ng is not Why is syslog-ng needed? Secure and reliable log transfer Flexible data extraction and processing Chapter 1. Introduction to syslog-ng Chapter 1. Introduction to syslog-ng Chapter 1. Introduction to syslog-ng What is new in syslog-ng Premium Edition 6 LTS? Who uses syslog-ng? Supported platforms

Chapter 2. The concepts of syslog-ng

Logging with syslog-ng Modes of operation Global objects Timezones and daylight saving Versions and releases of syslog-ng PE Licensing GPL and LGPL licenses High availability support The structure of a log message Message representation in syslog-ng PE

Message size and encoding

Structuring macros, metadata, and other value-pairs

Structuring macros, metadata, and other value-pairs

Things to consider when forwarding messages between syslog-ng PE hosts NFS file system for log files

Chapter 3. Installing syslog-ng

Security-enhanced Linux: grsecurity, SELinux Installing syslog-ng using the .run installer Upgrading syslog-ng PE Uninstalling syslog-ng PE

Chapter 4. The syslog-ng PE quick-start guide Chapter 5. The syslog-ng PE configuration file

The configuration syntax in detail Notes about the configuration syntax Global and environmental variables Logging configuration changes Modules in syslog-ng PE Managing complex syslog-ng configurations

Chapter 6. Collecting log messages — sources and source drivers

Collecting internal messages Collecting messages from text files Collecting messages using the RFC3164 protocol (network() driver) Collecting messages from named pipes Receiving messages from external applications Collecting messages from tables or relational database Collecting messages on Sun Solaris Collecting messages using the IETF syslog protocol (syslog() driver) Collecting the system-specific log messages of a platform Collecting messages from the systemd-journal system log storage Collecting messages from remote hosts using the BSD syslog protocol Collecting systemd messages using a socket Collecting messages from UNIX domain sockets

Chapter 7. Sending and storing log messages — destinations and destination drivers

Sending messages directly to Elasticsearch version 2.0 or higher Storing messages in plain-text files Storing messages in encrypted files Storing messages in a MongoDB database Sending messages to a remote log server using the RFC3164 protocol (network() driver) Sending messages to named pipes Sending messages to external applications Sending SNMP traps Sending messages to a remote log server using the IETF-syslog protocol Sending messages to a remote log server using the legacy BSD-syslog protocol (tcp(), udp() drivers) Sending messages to UNIX domain sockets Sending messages to a user terminal — usertty() destination

Chapter 8. Routing messages: log paths, reliability, and filters

Managing incoming and outgoing messages with flow-control Using disk-based and memory buffering Client-side failover Filters Dropping messages

Chapter 9. Global options of syslog-ng PE

Chapter 10. TLS-encrypted message transfer

Encrypting log messages with TLS Mutual authentication using TLS TLS options

Chapter 12. Reliable Log Transfer Protocol™

RLTP™ options Examples for using RLTP™

Chapter 13. Reliability and minimizing the loss of log messages

Flow control, no disk buffering, no RLTP™ Flow control, normal disk buffering, no RLTP™ Flow control, reliable disk buffering, no RLTP™ Flow control, reliable disk buffering, RLTP™ Deciding which loss prevention mechanism to apply

Chapter 14. Manipulating messages

Modifying messages Regular expressions

Chapter 15. Parsing and segmenting structured messages

Parsing key=value pairs The JSON parser

Chapter 16. Processing message content with a pattern database

Using pattern databases Correlating log messages Triggering actions for identified messages Creating pattern databases

Chapter 17. Statistics and metrics of syslog-ng Chapter 18. Multithreading and scaling in syslog-ng PE

Configuring multithreading Optimizing multithreaded performance

Chapter 19. Troubleshooting syslog-ng

Collecting debugging information with strace, truss, or tusc Stopping syslog-ng Reporting bugs and finding help Recover data from orphaned diskbuffer files

Chapter 20. Best practices and examples

Handling large message load Using name resolution in syslog-ng Configuring log rotation

GNU General Public License v2

Preamble TERMS AND CONDITIONS FOR COPYING, DISTRIBUTION AND MODIFICATION How to Apply These Terms to Your New Programs

Chapter 1. Introduction to syslog-ng

Chapter 1. Introduction to syslog-ng > Chapter 1. Introduction to syslog-ng

The syslog-ng PE application can store log messages securely in encrypted, compressed, and timestamped binary files. Timestamps can be requested from an external Timestamping Authority (TSA).

Chapter 1. Introduction to syslog-ng

Chapter 1. Introduction to syslog-ng > Chapter 1. Introduction to syslog-ng

The syslog-ng PE application can store log messages securely in encrypted, compressed, and timestamped binary files. Timestamps can be requested from an external Timestamping Authority (TSA).

What is new in syslog-ng Premium Edition 6 LTS?

Chapter 1. Introduction to syslog-ng > What is new in syslog-ng Premium Edition 6 LTS?

For details on the news and highlights of syslog-ng Premium Edition 6 LTS, see the Release Notes.
For details on changes in The syslog-ng Premium Edition 6 LTS Administrator Guide, see the section called “Version 5 F3 - 5 F4”.

Who uses syslog-ng?

Chapter 1. Introduction to syslog-ng > Who uses syslog-ng?

The syslog-ng application is used worldwide by companies and institutions who collect and manage the logs of several hosts, and want to store them in a centralized, organized way. Using syslog-ng is particularly advantageous for:

Internet Service Providers
Financial institutions and companies requiring policy compliance
Server, web, and application hosting companies
Datacenters
Wide area network (WAN) operators
Server farm administrators.

Public references of syslog-ng Premium Edition

Among others, the following companies decided to use syslog-ng PE in their production environment:

Documentos relacionados

The document was helpful.

Selecione a classificação

I easily found the information I needed.

Selecione a classificação

© 2025 One Identity LLC. ALL RIGHTS RESERVED. Terms of Use Privacy Cookie Preference Center