Dear syslog-ng users, This is the 97th issue of syslog-ng Insider, a monthly newsletter that brings you syslog-ng-related news. NEWS Sending logs to Panther using syslog-ng Panther is an open-source log management system, which is also available…

You can collect log messages from a Windows host in multiple ways using syslog-ng. For large scale installations the easiest is to use the Windows Event Collector (WEC) component of syslog-ng Premium Edition (PE). This way you don’t have to install any…

Loki is one of the latest applications that lets you aggregate and query log messages, and of course to visualize logs using Grafana. It does not index the contents of log messages, only the labels associated with logs. This way, processing and storing…

One of the most interesting projects utilizing syslog-ng is Security Onion, a free and open source Linux distribution for threat hunting, enterprise security monitoring, and log management. It is utilizing syslog-ng for log collection and log transfer…

Dear syslog-ng users, This is the 82nd issue of syslog-ng Insider, a monthly newsletter that brings you syslog-ng-related news. NEWS Syslog-ng on the edge After many years of pushing all computing from on-site to the cloud or huge data centers…

Event logging is a central source of information both for IT security and operations, but different teams use different tools to collect and analyze log messages. The same log message is often collected by multiple applications. Having each team using…

Version 3.27 of syslog-ng has brought many smaller, but useful features to us. The new Sumo Logic destination was already covered in an earlier blog . You can now also check exactly where a message arrived on a network source (IP address, port and protocol…

After many years of pushing all computing from on-site to the cloud or huge data centers, there is a new trend: edge computing. There can be many reasons, legal or practical, why data should be processed locally instead of being sent to a central location…

UNITE is the partner and user conference of One Identity, the company behind syslog-ng. This time the conference took place in Phoenix, Arizona where I talked to a number of American business customers and partners about syslog-ng. They were really enthusiastic…

Recently I gave a syslog-ng introductory workshop at Pass the SALT conference in Lille, France. I got a lot of positive feedback, so I decided to turn all that feedback into a blog post. Naturally, I shortened and simplified it, but still managed to get…

In our previous post , we discussed the performance of syslog-ng, streaming logs to HDFS destinations. Now we’ll pick up where we left off, and continue our performance evaluation with the Kafka. In our Kafka tests, we used syslog-ng Premium Edition…

Hadoop and Kafka are part of modern high speed data management, and syslog-ng has been supporting these destinations for some time now, as it’s an integral part of a versatile central log management solution. Seamless integration is great, but what about…

Today we’re announcing syslog-ng Premium Edition 7, our latest stable release for syslog-ng PE. This release is primarily for customers using syslog-ng PE as a log collection and log routing tool front-ending SIEM solutions and big data destinations.…

We are ending this unusually hot June (at least here at our headquarter in Budapest) with a new syslog-ng PE release. As we said when moving over to a rolling release model , we will be delivering new features with every release, and 7.0.3 is no exception…

I am pleased to announce our latest long-term supported version of syslog-ng Premium Edition, 6 LTS . In addition to the long-awaited key-value parser, we updated the TLS cipher suite and introduced .NET Framework 4.0 support in the Windows agent. We…

The role of Central Log Management With the increased reliance on analytics to drive security operations, IT security professionals are paying particular attention to one of the oldest tools in their toolbox, log management. A recently released report…

A couple weeks ago our CTO, Balázs Scheidler reflected on the importance of central log management , an approach that we have been advocating for a long time and was also underpinned by a recent report by Gartner. Having spent the past week at the RSA…

Centralized log management certainly is a great solution when you are trying to tackle issues related to handling huge amounts of logs . With the right tool, it can be also beneficial on collection and search performance – areas that syslog-ng Store Box…