syslog
Syslog messages in EFK stack
You can use opensource syslog-ng tool to capture syslog messages from various sources, like remote servers, devices, local logs and so on. These logs can then be forwarded to fuentd on EFK stack. Here is a sample config of syslog-ng config to receive logs from devices and hosts on tcp and udp port 514. Received […]
Delete old data in Elasticsearch
ELK platform provides great solution aggregating and indexing various log, events within a organization. But you may not want to keep old data in Elasticsearch forever. Also see ELK installation and configuration To delete old data you can use “elasticsearch-curator” tool You can simply install it as $pip install elasticsearch-curator Followed by some basic configuration. […]
Syslog and snmp traps in ELK – Taming ELK
ELK stack is quite capable solution for event, logs, data aggregation and parsing. It offers a very shiny yet highly flexible web frontend. You can extend it to limits you can think off. It is a perfect open source tool for end to end data analytics.So what is ELK exactly ? ELK is composed of […]