What central log server are you using?

S

SteamEmix2019-12-19 14:50:18

System administration

SteamEmix, 2019-12-19 14:50:18

Dear colleagues.
I had a need to create a central log server (web interface), I already tried to collect logs through rsyslog, it somehow works very strangely, I tried to install ELK, but for some reason I couldn’t connect other servers to send logs from them .
What programs do you use? Maybe there is some kind of manual or something like that, otherwise I have already broken my brain, I will be very grateful.
PS the essence of the task: to collect logs from 30-40 servers + 15 routers per server and visualize them by type (ELK, LogAnalizer).

Reply

Answer the question

In order to leave comments, you need to log in

3 answer(s)

P

paran0id, 2019-12-19
@paran0id

rsyslog works great. And ELK too. And Graylog. And even syslog-ng works. Be specific.

V

Vitaly Karasik, 2019-12-19
@vitaly_il1

ELK - either at home or in the cloud (Logz.io, Elastic, AWS).
send details, we will help

T

thyratr0n, 2019-12-20
@thyratr0n

The fact that the stands were not connected to ELK - here you need to look at the connection methods + log volumes (like sending logs of several hundred kilos via UPD without specific developments is a bad idea). In general, rsyslog local + remote ELK will solve all your problems.