[olug] No-nonsense syslog server setup

Justin Reiners justin at hotlinesinc.com
Fri Jul 26 00:30:54 UTC 2013


Thanks for the reply! We are a linux shop, I am looking for something
fairly easy to set up, I have tried a couple times but have never been
successful in doing so, (I have a heck of a workload, small company. I
would like a syslog set up for security reasons, and because its another
useful toy. We primarily run centos, but I have no problem setting it up in
ubuntu server, or just using some type of VM appliance.I really dont want
to limit which machines can write to it, as most, if not all linux boxes
should be writing to it, including dev.

My "go to" answer would be Syslog-NG, but before I recommend that, can you
tell us a little more about what you're dealing with?

   - What platform do you want it to run on?  Linux?  Windows? We are a
linux shop.

   - What type and how many devices are you going to be receiving logs
from? ~50-75
   - Any idea on your log volume? not really, but I have plenty of beefy
servers I can use.
   - Are you just looking to archive the logs?  As text (compressed)?  Any
   processing/reporting? I would like processing/viewing/reporting
   - Do you have any idea what kind of retention you're planning?  A day?
    A week?  A month?  A year? 6-12 months
With a little more information, I'd be happy to offer some suggestions or
config examples for setting up a syslog server.


On Thu, Jul 25, 2013 at 6:44 PM, Christopher Cashell <topher-olug at zyp.org>wrote:

> On Thu, Jul 25, 2013 at 4:16 PM, Justin Reiners <justin at hotlinesinc.com>
> wrote:
> > Anyone know of a nice free easy to install syslog server that's not a
> pita
> > to setup? Looking for a nice central logging solution to implement in old
> > hardware here. Tried some howtos but had issues making them work.
>
> My "go to" answer would be Syslog-NG, but before I recommend that, can you
> tell us a little more about what you're dealing with?
>
>    - What platform do you want it to run on?  Linux?  Windows?
>
>    - What type and how many devices are you going to be receiving logs
> from?
>    - Any idea on your log volume?
>    - Are you just looking to archive the logs?  As text (compressed)?  Any
>    processing/reporting?
>    - Do you have any idea what kind of retention you're planning?  A day?
>     A week?  A month?  A year?
>
> With a little more information, I'd be happy to offer some suggestions or
> config examples for setting up a syslog server.
>
> --
> Christopher
> _______________________________________________
> OLUG mailing list
> OLUG at olug.org
> https://lists.olug.org/mailman/listinfo/olug
>



-- 
*Justin Reiners*
Hotlines Technical Solutions Engineer.
Phone: 800.807.2967
www.PartsHotlines.com
www.MrCycleParts.com
    <http://www.facebook.com/pages/PartsHotlinescom/251605051521985><https://plus.google.com/102910487271834609118>



More information about the OLUG mailing list