Knowledgebase

Portal Home > Knowledgebase > Articles Database > Who here uses remote logging?


Who here uses remote logging?




Posted by jalapeno55, 07-20-2008, 03:51 PM
Who here uses remote logging? If yes state what you are using after voting on the poll.
Posted by Scott.Mc, 07-20-2008, 05:03 PM
You missed rsylog. --Edit-- no you didn't Silly me. #### I started using rsyslog+stunnel with some minor modifications, used to syslog-ng with stunnel with tons of modifications. Last edited by Scott.Mc; 07-20-2008 at 05:09 PM.
Posted by vantage255, 07-20-2008, 06:38 PM
We use syslog-ng piping the logs into SPLUNK for searching. SPLUNK is the way to go with syslogs. The functionality is far superior to anything else out there. and they have most of the functionality in the free version.
Posted by jalapeno55, 07-20-2008, 07:12 PM
Why are you using stunnel with rsyslog? It natively supports SSL if you compile it with --enable-gnutls
Posted by jalapeno55, 07-20-2008, 07:17 PM
I'll have to check out SPLUNK, is it better than phpLogCon? Can SPLUNK read from mysql?
Posted by Scott.Mc, 07-20-2008, 07:37 PM
I am not, we were using stunnel with syslog-ng. --Edit-- Once again looks like I made a total mess of my initial post, so let me repeat it again. "I started using rsyslog with some minor modifications, used to syslog-ng with stunnel with tons of modifications." When I didn't see rsylog in the initial poll that's what threw me off even though it's listed
Posted by vantage255, 07-20-2008, 07:52 PM
Splunk uses a Java based datasbase that is internal to SPLUNK. Basicaly, you just poitn splunk at your syslog file, or at a FIFO and it does its thing. I use a syslog file because the one Issue I have had int he past with splunk is that you cannot cut and paste out of the web interface nicely. So if you have to send a log snippet to a vendor.. you may want the text file to pull the snippet from. Other than that splunk rocks. It has an awsome live web tail feature that lets you tail logs in a browser window. its just awsome..


Was this answer helpful?

Add to Favourites Add to Favourites    Print this Article Print this Article

Also Read
ssh command to do this (Views: 494)
IP address (Views: 507)
Which method do you prefer? (SaaS) (Views: 509)
No one can get the embeded code of this player (Views: 471)
how can i encode javascript ?? (Views: 493)

Language: