efk
Syslog messages in EFK stack
You can use opensource syslog-ng tool to capture syslog messages from various sources, like remote servers, devices, local logs and so on. These logs can then be forwarded to fuentd on EFK stack. Here is a sample config of syslog-ng config to receive logs from devices and hosts on tcp and udp port 514. Received […]
EFK stack – versatile and very capable analytics platform
So far I was happily using ELK stack to feed syslog messages into Elasticsearch. In ELK stack I had used Logstash to aggregate syslogs and feed them into elasticsearch. Recently, I came across fluentd and found it quite interesting and flexible. Using fluentd with Elasticsearch and Kibana I have now build a EFK stack. EFK […]