Reading and receiving logs Operating Systems Microsoft Windows GNU/Linux Android Network UDP TCP TLS/SSL over TCP Syslog Database Using im_dbi Using im_odbc Files External programs and scripts Applications Apache HTTP Server Apache Tomcat and java application logs Devices Cisco Checkpoint 9.
#OFFLINE NDS SAVE FILE CONVERTER V2 OFFLINE#
Offline log processing nxlog-processor 8.
Modules Extension modules CSV (xm_csv) JSON (xm_json) XML (xm_xml) Key-value pairs (xm_kvp) GELF (xm_gelf) Character set conversion (xm_charconv) File operations (xm_fileop) Multi-line message parser (xm_multiline) Syslog (xm_syslog) External program execution (xm_exec) Perl (xm_perl) WTMP (xm_wtmp) Input modules Fields generated by core DBI (im_dbi) Program (im_exec) File (im_file) Internal (im_internal) Kernel (im_kernel) Mark (im_mark) MS EventLog for Windows XP/2000/2003 (im_mseventlog) MS EventLog for Windows 2008/Vista and later (im_msvistalog) Null (im_null) TLS/SSL (im_ssl) TCP (im_tcp) UDP (im_udp) Unix Domain Socket (im_uds) Processor modules Blocker (pm_blocker) Buffer (pm_buffer) Event correlator (pm_evcorr) Filter (pm_filter) Message deduplicator (pm_norepeat) Null (pm_null) Pattern matcher (pm_pattern) Message format converter (pm_transformer) Output modules Blocker (om_blocker) DBI (om_dbi) Program (om_exec) File (om_file) HTTP(s) (om_http) Null (om_null) TLS/SSL (om_ssl) TCP (om_tcp) UDP (om_udp) UDS (om_uds) 7. Language Types Expressions Literals Fields Operations Functions Statements Assignment Block Procedures If-Else Variables Statistical counters List of available functions and procedures Functions and procedures exported by core Functions and procedures exported by modules 6. Configuration File inclusion Constant and macro definitions Global directives Modules Common module directives Routes Priority Path 5. Architecture and concepts History Concepts Architecture 4. Installation and quickstart Microsoft Windows GNU/Linux Installing from DEB packages (Debian, Ubuntu) Installing from RPM packages (CentOS, RedHat) Configuring nxlog on GNU/Linux 3. Introduction Overview Features Multiplatform Modular architecture Client-server mode Log message sources and destinations Importance of security Scalable multi-threaded architecture High performance I/O Message buffering Prioritized processing Avoiding lost messages Apache-style configuration syntax Built-in config language Scheduled tasks Log rotation Different log message formats Advanced message processing capabilites Offline processing mode Character set and i18n support 2.
0 kommentar(er)
