json Archives - rsyslog

Coupling with Logstash via Redis

By rgheorghePosted on October 5, 2015May 30, 2018Posted in More complex scenariosTagged elasticsearch, Guides for rsyslog, howto, imfile, json, logstash, omelasticsearch, omhiredis, queues, recipe, redis, rsyslog, syslog, templates, v8, worker thread

Original post: Recipe: rsyslog + Redis + Logstash by @Sematext OK, so you want to hook up rsyslog with Logstash. If you don’t remember why you want that, let me give you a few hints: Logstash can do lots of things, it’s easy to set up but tends to be too heavy to put on […]

Tutorial: Sending impstats Metrics to Elasticsearch Using Rulesets and Queues

By rgheorghePosted on April 20, 2015May 30, 2018Posted in More complex scenariosTagged cee, disk-assisted queue, elasticsearch, Guides for rsyslog, impstats, json, monitoring, omelasticsearch, performance, queues, ruleset, tutorial

Originally posted on the Sematext blog: Monitoring rsyslog’s Performance with impstats and Elasticsearch If you’re using rsyslog for processing lots of logs (and, as we’ve shown before, rsyslog is good at processing lots of logs), you’re probably interested in monitoring it. To do that, you can use impstats, which comes from input module for process […]

rsyslog 8.3.1 (v8-devel) released

By Adiscon SupportPosted on April 24, 2014May 30, 2018Posted in News, Release AnnouncementTagged 8.3.1, bugfix, devel, json, mmexternal, mmutf8fix, release, rsyslog, uuid, v8

We have just released 8.3.1 of the v8-devel branch. This release provides some improvements for external message modification modules, a module to rewrite message facility and severity as well as bug fixes. It is a recommended update for all v8.3 users. ChangeLog: http://www.rsyslog.com/changelog-for-8-3-1-v8-devel/ Download: http://www.rsyslog.com/download-v8-devel/ As always, feedback is appreciated. Best regards, Florian Riedl

Changelog for 8.3.1 (v8-devel)

By Adiscon SupportPosted on April 24, 2014May 30, 2018Posted in ChangelogTagged 8.3.1, bugfix, Changelog, devel, json, jsonmesg, mmexternal, mmutf8fix, rsyslog, uuid, v8

Version 8.3.1 [v8-devel] 2014-04-24 external message modification interface now support modifying message PRI “jsonmesg” property will include uuid only if one was previously generated This is primarily a performance optimization. Whenever the message uuid is gotten, it is generated when not already present. As we used the regular setter, this means that always the uuid […]

Changelog for 8.3.0 (v8-devel)

By Adiscon SupportPosted on April 10, 2014May 30, 2018Posted in ChangelogTagged bugfix, Changelog, devel, external message modification, json, mmexternal, plugin, rsyslog, v8

Version 8.3.0 [v8-devel] 2014-04-10 new plugin for anonymizing credit card numbers Thanks to Peter Slavov for providing the code. external message modification modules are now supported They are bound via the new native module “mmexternal”. Also, a sample skeleton for an external python message modification module has been added. new $jsonmesg property with JSON representation […]

Output to Elasticsearch in Logstash format (Kibana-friendly)

By rgheorghePosted on February 26, 2014May 30, 2018Posted in More complex scenariosTagged elasticsearch, json, kibana, logstash, omelasticsearch, templates

Original post: Recipe rsyslog+Elasticsearch+Kibana by @Sematext In this post you’ll see how you can take your logs with rsyslog and ship them directly to Elasticsearch (running on your own servers, or the one behind Logsene’s Elasticsearch API) in a format that plays nicely with Logstash. So you can use Kibana to search, analyze and make […]

Parsing JSON (CEE) Logs and Sending them to Elasticsearch

By rgheorghePosted on January 13, 2014May 30, 2018Posted in More complex scenariosTagged cee, CEE-based properties, cee-enhanced, elasticsearch, json, omelasticsearch, templates

Original post: Structured Logging with rsyslog and Elasticsearch via @sematext When your applications generate a lot of logs, you’d probably want to make some sense of them through searches and statistics. Here’s when structured logging comes in handy, and I would like to share some thoughts and configuration examples of how you could use a […]

rsyslog 6.5.1 (beta)

By adisconteamPosted on October 11, 2012May 30, 2018Posted in beta, DownloadTagged 6.5.1, beta, bugfix, cee, Download, imfile, imuxsock, json, logctl, lumberjack, ommongodb, rainerscript, rsyslog, v6

Download file name: rsyslog 6.5.1 (beta) rsyslog 6.5.1 (beta) md5sum: e6f8ef3dc1acdb5b7f64a1046b7e8a8f5a4f39bc1ebd1bf02eb092394a6774b4 Author: Rainer Gerhards (rgerhards@adiscon.com) Version: 6.5.1 File size: 2.55 MB Download this file now!

Changelog for 6.5.1 (v6-beta)

By adisconteamPosted on October 11, 2012May 30, 2018Posted in ChangelogTagged 6.5.1, beta, bugfix, cee, Changelog, imfile, imtcp, imuxsock, json, logctl, lumberjack, ommongodb, rainerscript, rsyslog, v6

Version 6.5.1 [BETA] 2012-10-11 added tool “logctl” to handle lumberjack logs in MongoDB imfile ported to new v6 config interface imfile now supports config parameter for maximum number of submits which is a fine-tuning parameter in regard to input baching added pure JSON output plugin parameter passing mode ommongodb now supports templates bugfix: imtcp could […]

rsyslog 6.5.1 (v6-beta) released

By adisconteamPosted on October 11, 2012May 30, 2018Posted in News, Release AnnouncementTagged 6.5.1, beta, bugfix, cee, imfile, imtcp, imuxsock, json, logctl, lumberjack, ommongodb, rainerscript, rsyslog, v6

This is the new v6-beta, which includes the full v6-subset of the new config language as well as somewhat improved support for lumberjack/CEE. This version concludes development efforts for v6. Note that it is recommended to use v7 if you do not have any special need for v6. ChangeLog: http://www.rsyslog.com/changelog-for-6-5-1-v6-beta/ Download: http://www.rsyslog.com/rsyslog-6-5-1-beta/ As always, feedback […]