[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

syslog server

Subject: syslog server
From: shortdudey123 at gmail.com (Grant Ridder)
Date: Tue, 7 Jun 2016 17:28:09 -0700
In-reply-to: <[email protected]>
References: <CADXzBABxoyjB_XxqymhdReX1WubZJfvJSTz3sX72=oe+4C7Dpw@mail.gmail.com> <[email protected]>

+1 for ELKK (with kafka)
Doing several hundred GB of log per day with a dozen instances on AWS (ES
cluster + logstash hosts + kafak cluster)

-Grant

On Mon, Jun 6, 2016 at 11:25 PM, <Valdis.Kletnieks at vt.edu> wrote:

> On Mon, 06 Jun 2016 14:59:51 -0600, Maximino Velazquez said:
> > What is the best syslog server  (opensource)?
>
> Step 0:  Define what "best" means in your environment.
>
> What features do you need?  Routing to a central aggregation server over
> TLS?
> Powerful regex-based routing?  Ingestion into a database (a la splunk or
> Elk)
> for data mining?  Ability to deal with insanely high message rates? Other
> must-have or don't-care features?  License pricing? Vendor support?
>
> Step 1:  After figuring out what you need, make a matrix of the available
> options and how well they fit.
>
> (We have in production syslog-ng, rsyslog, splunk, Elk, and probably a few
> others I've forgotten, for different purposes....)
>
>

Follow-Ups:
- syslog server
  - From: trelane at trelane.net (Andrew Kirch)

References:
- syslog server
  - From: mvm at transtelco.net (Maximino Velazquez)
- syslog server
  - From: Valdis.Kletnieks at vt.edu (Valdis.Kletnieks at vt.edu)

Prev by Date: Netflix banning HE tunnels
Next by Date: syslog server
Previous by thread: syslog server
Next by thread: syslog server
Index(es):
- Date
- Thread