Login to Post Solution
Subscribe by email
By view count
By comment count
Insider 2018-09: SCL; Splunk .conf18; failover; human readable numbers; webinars;
Dear syslog-ng users, This is the 69th issue of syslog-ng Insider, a monthly newsletter that brings you syslog-ng-related news. NEWS Creating your first block for the syslog-ng configuration library (SCL) The syslog-ng configuration library (SCL) is...
20 Sep 2018
Python destination: getting into details
Last week you learned the very basics of the syslog-ng Python destination. This time, you will move a bit further and learn about a few more configuration options and optional methods. If you are new to the Python destination and want to get started ...
13 Sep 2018
Python destination getting started
You can store your log messages to many different destinations using syslog-ng, but of course not everywhere. This is where the Python destination of syslog-ng can come handy. You can extend syslog-ng easily with your own code written in Python and s...
6 Sep 2018
Insider 2018-08: 3.16 & 3.17; Splunk; IoT security; Telegram; Throttling;
Dear syslog-ng users, This is the 68th issue of syslog-ng Insider, a monthly newsletter that brings you syslog-ng-related news. syslog-ng 3.16 & 3.17 are released Version 3.16 & 3.17 of syslog-ng are now available. Support to send log messag...
31 Aug 2018
Human readable numbers in syslog-ng
Writing an extra zero at the wrong place in a configuration file can result in a filled-up partition and data loss. This is where human readable numbers in syslog-ng can help: using kilo / mega / giga instead of writing many-digit numbers can save y...
30 Aug 2018
Client-side failover and failback using syslog-ng
When you have multiple syslog servers collecting logs, syslog-ng on the client side can fail over to secondary servers if the primary one becomes unavailable. It can also fail back to the primary server soon after it is back on-line – if config...
21 Aug 2018
Build your own syslog-ng packages from patched Git sources
When a user reports a problem with syslog-ng, developers create code to fix it. The fix is called a patch or a pull request (PR) in Git terminology. Often this code does not enter the main source code automatically but developers ask the user to test...
31 Jul 2018
Creating your first block for the syslog-ng configuration library (SCL)
The syslog-ng configuration library (SCL) is a collection of ready-to-use configuration snippets that hide away the complexity of the specifics of your log processing pipeline. If you already reuse parts of your configuration on different machines, i...
19 Jul 2018
Throttling log messages
One of the main advantages of syslog-ng is that it is high performance and low on resource usage. Why throttle the messages then? There are three main reasons – licensing, performance, and bandwidth – all outside of syslog-ng. From this b...
11 Jul 2018
hook-commands: easy driver setup
The hook-commands() option of syslog-ng makes it easy to execute external commands when a driver is started or stopped. For example, you can open a port in the firewall when a network source is started and close it once syslog-ng is shut down. Or you...
5 Jul 2018
Telegram destination in syslog-ng
Getting started with the Telegram destination of syslog-ng is not an easy and straightforward process, but it is well worth the efforts. If you do not know
yet, Telegram is a cloud-based messaging application known for its security...
3 Jul 2018
IoT security: logging
published a brand new white paper about the Internet of Things:
“Stopping IoT-based Attacks on Enterprise Networks”
. IoT devices have been around in the networks of enterprises for many years, just think about network-conne...
2 Jul 2018
Using the syslog-ng Store Box (SSB) in front of Splunk
The syslog-ng application was used for many years as a log collection layer in front of Splunk. But why use a full-blown log management appliance with a graphical user interface instead of a simple command line application? I learned the answers at&...
5 Jun 2018
Containers and automation: five conferences in two words
During the past six weeks I visited five different conferences in four different countries either as a speaker or as booth staff. While traveling so much in such a short span of time was quite exhausting, I would do it again without hesitation. Altog...
29 May 2018
Big Data: save all or save costs?
When starting a new project, Big Data vendors usually recommend a “save all” and “save raw” approach, as you never know what data might come handy later and in what format. Companies starting those projects also often have the...
22 May 2018
Launching the official syslog-ng OSE repository
Last autumn, we asked for your feedback on our plan to introduce official binary repositories for syslog-ng Open Source Edition. The overwhelming majority of those who got back to us agreed that it is fair to provide this service tied to a simple reg...
9 May 2018
Calculate PI with syslog-ng
Origin story We just realized that syslog-ng has a nice milestone as it reached the 3.14 version. I wanted to create something to celebrate it. There were a few ideas – still not forgotten, but in the end I though I do not want to extend syslog...
20 Apr 2018
Insider 2018-04: RHEL6; Windows Event Log; Patched RPM; HEC; Conferences
Dear syslog-ng users, This is the 66th issue of syslog-ng Insider, a monthly newsletter that brings you syslog-ng-related news. NEWS syslog-ng is available for RHEL 6 / CentOS 6 again After more than a year, the latest version of syslog-ng compiles a...
16 Apr 2018
Splunk HEC: Sending logs using the program() destination of syslog-ng
Recently Splunk started to recommend the use of the HTTP Event Collector (HEC) instead of forwarders. Syslog-ng supports this in multiple ways.
Last time I showed you how to use the http() destination of syslog-ng.
This time I introduce you to anothe...
3 Apr 2018
syslog-ng at SCALE 2018
It is the fourth year that
has participated at
Southern California Linux Expo
or, as better known to many, SCALE ‒ the largest Linux event in the USA. In many ways, it is similar to
in Europe, however, SCALE also focuses on users and...
20 Mar 2018
How to collect Windows Event Logs with syslog-ng without installing an agent
With the release of
syslog-ng Premium Edition 7.0.6
, you can
collect Windows event logs
without installing any third party application on your Windows-based computer. The benefits are obvious: You don’t need to install any additional applicati...
23 Feb 2018
CentOS Dojo and FOSDEM 2018
FOSDEM is one of the largest open source conferences in the world, with over 8000 participants. As many developers gather not just from Europe but from all around the world, there are a number of pre- and post conferences timed to happen before and a...
13 Feb 2018
Insider 2018-02: New website; One Identity; Docker; Error messages; Elastic 6; DevConf
Dear syslog-ng users, This is the 65th issue of syslog-ng Insider, a monthly newsletter that brings you syslog-ng-related news. NEWS New syslog-ng website Our new website –
– is now live. It is a central hub of ...
8 Feb 2018
DevConf 2018: long live containerization
DevConf is a yearly conference for developers, administrators, and users of Linux and related technologies. It is organized by Red Hat in Brno, home to one of their major development centers. This event was the 10th in a row and the largest ever...
1 Feb 2018
Common syslog-ng error messages and their solutions
In this post, we would like to explain a few common syslog-ng error and warning messages, what they mean, and how to solve them. Destination queue full Destination queue full, dropping messages; queue_len='10000', log_fifo_size='10000&#...
29 Jan 2018