Our team at Adiscon offers a comprehensive paid full-service rsyslog product, available on the AWS Marketplace. As the same team that develops and supports the rsyslog open source project, we’re dedicated to providing exceptional service and ongoing innovation. By purchasing our AWS Marketplace product, you’re also supporting the continued development of rsyslog. This ensures that […]
Slightly Changed rsyslog Stable Release Cycle
For the past couple of years, rsyslog made scheduled releases every 6 weeks. We now changed this slightly to make version numbers easier to understand. Remember, rsyslog versions are called 8.<yy><mm>.0, so the April 2020 release is 8.2004.0. When we release very six weeks, we get odd and even month numbers and, even more confusing, […]
Avoid overly-large in memory queues
Rsyslog provides the “queue.size” parameter to set a limit on the number of messages a queue can keep in memory. This is primarily meant to support peak traffic. Note that this counter is given in number of messages, not bytes. A frequent mistake is to think in bytes and select very large values (e.g. 7 […]
solving rsyslog write errors
When rsyslog reports a write error, it includes the operating-system generated error message. It should hopefully give you a clue what the problem cause was. Unfortunately from time to time to root cause is not obvious. In this case please check the following potential causes: Was OS/rsyslog config change applied but rsyslog not restarted? Rsyslog […]
rsyslog version numbering change
Rsyslog used a version number scheme of 8.<real-version>.0 where we incremented <real-version> every 6 weeks with each release. The 8 and 0 are constant (well, the 0 could change to 1 with a very important patch, but in practice we have only done this once). While this scheme has worked pretty well since we introduced it, we […]
rsyslog error 51 [warning]
File has been truncated This is not a real error but rather a warning message. Most probably it occurs when monitoring files with imfile and “reopenOnTruncate” has been set to “on”. In this case, it indicates truncation of the file has been detected, and as such imfile begins to read it’s content from the beginning […]
message modification modules: why run in direct (queue) mode?
Message modificaton modules modify the message object, so the next actions can process the modified message. However, if the action that invokes the message modification module runs on a real queue (anything other than queue.type=”direct”), the message object is actually duplicated, and done so only for executing the action. In other words, the duplicated message object […]
rsyslog error 2357
Warning parsing config file. This unfortunately is a pretty generic error code which is emitted when there is a problem understanding the configuration files. The main configuration file is usually /etc/rsyslog.conf and it may include other configuration files. The error message names the file and the approximate location of the error. The error text should […]
rsyslog error 2007
What does it mean? This is a generic error message that unfortunately can happen in a number of cases. In practice, it is often associated with suspension of actions. Then it comes with a text like action “action 17” suspended The number behind action changes. How to solve it? A frequent case for this error […]
librelp 1.2.16
librelp 1.2.16 [download]This new release of librelp provides API changes that allow better handling of oversize messages, as well as defining the listener interface. In addition, a few bugfixes for memory leaks and several minor issues are included.For more details, please take a look at the changelog below. ———————————————————————- – API changes * add new […]