06-12-2019 12:10 PM
Is it possible to send the logs visible under the "LOGS" menu to external syslog? If yes then how?
Thanks in advance.
07-03-2019 03:56 AM
Hi @Sly_Cooper, The logs you see in the LOGS menu are the messages exchanged between nodes. A way to store that information is adding a LogStash output node and point it to a LogStash installation or directly to Splunk, to record all the messages received by that output node in the external syslog server.
Would that work?
08-12-2019 11:25 AM - edited 08-12-2019 11:28 AM
@lmori Apologies for the late response. What would be the input or aggregate node? Do I need to use the same aggregate node which I am using for aggregation and using for the PAN EDL and point it to the logstash based output node? Or this will come from the miners?
The logstash prototype has local server and port info. How will I forward the logs to the remote server or do I need to update the local server and port info with the remote server ip? Can you please help me understand the flow. Appreciate your help.
01-12-2021 12:29 PM
I know this is an old old threat but I am attempting to do the same thing? We have a need to send these logs to a Splunk server for retention. Did you ever figure out how?
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
