Original post: Recipe: Apache Logs + rsyslog (parsing) + Elasticsearch by @Sematext This recipe is about tailing Apache HTTPD logs with rsyslog, parsing them into structured JSON documents, and forwarding them to Elasticsearch (or a log analytics SaaS, like Logsene, which exposes the Elasticsearch API). Having them indexed in a structured way will allow you […]
rsyslog 8.9.0 (v8-stable) released
We have released rsyslog 8.9.0. This is primarily a bug-fixing release with a couple of improvements in omprog, imuxsock and the zero message queue plugins. ChangeLog: http://www.rsyslog.com/changelog-for-8-9-0-v8-stable/ Download: http://www.rsyslog.com/downloads/download-v8-stable/ As always, feedback is appreciated. Best regards, Florian Riedl
Changelog for 8.9.0 (v8-stable)
Version 8.9.0 [v8-stable] 2015-04-07 omprog: add option “hup.forward” to forwards HUP to external plugins This was suggested by David Lang so that external plugins (and other programs) can also do HUP-specific processing. The default is not to forward HUP, so no change of behavior by default. imuxsock: added capability to use regular parser chain Previously, […]
rsyslog 7.4.7 (v7-stable) released
We have just released 7.4.7 of the v7-stable branch. This is a bug-fixing release. Most importantly it fixes a bug that can lead to
Changelog for 7.4.7 (v7-stable)
Version 7.4.7 [v7.4-stable] 2013-12-10 bugfix: limiting queue disk space did not work properly queue.maxdiskspace actually initializes queue.maxfilesize total size of queue files was not checked against queue.maxdiskspace for disk assisted queues. Thanks to Karol Jurak for the patch. bugfix: linux kernel-like ratelimiter did not work properly with all inputs (for example, it did […]
Changelog for 7.5.4 (v7-devel)
Version 7.5.4 [devel] 2013-10-07 mmpstrucdata: new module to parse RFC5424 structured data into json message properties change main/ruleset queue defaults to be more enterprise-like new defaults are queue.size 100,000 max workers 2, worker activation after 40,000 msgs are queued, batch size 256. These settings are much more useful for enterprises and will not hurt low-end […]
Changelog for 7.3.11 (v7-devel)
Version 7.3.11 [devel] 2013-04-23 added support for encrypting log files omhiredis: added support for redis pipeline support Thanks to Brian Knox for the patch. bugfix: $PreserveFQDN is not properly working Thanks to Louis Bouchard for the patch closes: http://bugzilla.adiscon.com/show_bug.cgi?id=426 bugfix: imuxsock aborted due to problem in ratelimiting code Thanks to Tomas Heinrich for the patch. […]
rsyslog 7.3.11 (v7-devel)
Download file name: rsyslog 7.3.11 (devel) rsyslog 7.3.11 (devel) sha256 hash: 2a41dfb1cd756880693e297877ffbab5d324ecf108e3533401a919efb49ea344 Author: Rainer Gerhards (rgerhards@adiscon.com) Version: 7.3.11 File size: 2.887 MB Download this file now!
rsyslog 7.3.7 (v7-devel) released
We have just released v 7.3.7 of the rsyslog development branch. This release offers some important new features, most importantly a plugin to anonymize IPv4 addresses and a plugin to write to the systemd journal. Also, the field() RainerScript function has been upgraded to support multi-character field delimiters. There is also a number of bug […]
Changelog for 7.3.7 (v7-devel)
Version 7.3.7 [devel] 2013-03-12 add support for anonymizing IPv4 addresses add support for writing to the Linux Journal (omjournal) imuxsock: add capability to ignore messages from ourselves This helps prevent message routing loops, and is vital to have if omjournal is used together with traditional syslog. field() function now supports a string as field delimiter […]