• Products
    • View all products
    • Free trials
    • Log Management Appliance
    • Log Management Software
    • Open Source Log Management
  • Solutions
    • Optimizing SIEM
    • Universal log collection and routing
    • Big data ingestion
    • Rapid search and troubleshooting
    • Meeting compliance requirements
    • Secure data archive
  • Resources
    • Customer Stories
    • Documents
    • Events
    • Technical Documentation
      • syslog-ng Premium Edition
      • syslog-ng Store Box
      • syslog-ng Open Source
    • Videos
  • Trials
  • Support
    • Packages
    • By Product
      • syslog-ng Premium Edition
      • syslog-ng Store Box
  • Partners
    • Overview
    • Partner Circle Log In
    • Become a Partner
    • Find a Partner
  • Community
    • Home
    • Blog
    • Open Source Edition Mailing List
syslog-ng Community
syslog-ng Community
  • Site
  • User
  • Site
  • Search
  • User
syslog-ng Community
syslog-ng Community
Blog
    • New
    Blog
    • All tags
    • syslog-ng
    • CentOS
    • Docker
    • Elasticsearch
    • EPEL
    • Fedora
    • FreeBSD
    • http
    • Insider
    • JSON
    • Kibana
    • log management
    • macOS
    • MQTT
    • openSUSE
    • parser
    • patterndb
    • Prometheus
    • python
    • RHEL
    • RPM
    • splunk
    • SSB
    • sudo
    • tutorial
    • windows
    • File size-based log rotation in syslog-ng

      File size-based log rotation in syslog-ng

      Peter Czanik
      Peter Czanik
      Version 4.10 of syslog-ng introduced file size-based log rotation. Thanks to this, storage space is no longer filled with logs with the risk that you might not see older logs if the message rate is higher than expected. Before you begin You need at…
      • 3 days ago
      • syslog-ng Community
      • Blog
    • Syslog-ng in AIX ToolBox for Open Source Software

      Syslog-ng in AIX ToolBox for Open Source Software

      Peter Czanik
      Peter Czanik
      Support for IBM’s AIX operating system has been available in syslog-ng for almost two decades. First in open source, then also in syslog-ng Premium Edition. Recently, IBM added syslog-ng to the AIX ToolBox for Open Source Software. AIX ToolBox Just…
      • 9 days ago
      • syslog-ng Community
      • Blog
    • Nightly syslog-ng RPM packages for RHEL & Co.

      Nightly syslog-ng RPM packages for RHEL & Co.

      Peter Czanik
      Peter Czanik
      I have been providing syslog-ng users with weekly git snapshot RPM packages for almost a decade. From now on, RHEL & Co users can use nightly packages provided by the syslog-ng team, and from a lot less obscure location. As usual, these packages are for…
      • 16 days ago
      • syslog-ng Community
      • Blog
    • The syslog-ng Insider 2025-09: AI; syslog; FreeBSD

      Peter Czanik
      Peter Czanik
      Dear syslog-ng users, This is the 134th issue of syslog-ng Insider, a monthly newsletter that brings you syslog-ng-related news. NEWS Syslog-ng development and AI Recently, several people have asked me about the syslog-ng project’s view on AI…
      • 22 days ago
      • syslog-ng Community
      • Blog
    • Installing syslog-ng 4.9.0 on FreeBSD

      Installing syslog-ng 4.9.0 on FreeBSD

      Peter Czanik
      Peter Czanik
      Version 4.9.0 of syslog-ng has been available for some time. However, it is not available yet in FreeBSD ports, as there were compilation problems on FreeBSD 15-CURRENT. You can still install it using my own updated ports Makefile. I maintain my own…
      • 1 month ago
      • syslog-ng Community
      • Blog
    • The core values of syslog-ng

      The core values of syslog-ng

      Peter Czanik
      Peter Czanik
      Whenever I present syslog-ng at a conference or I stand next to a booth, people often ask me why should they use syslog-ng instead of one of its competitors. So let me summarize what the users and developers of syslog-ng typically consider as its most…
      • 1 month ago
      • syslog-ng Community
      • Blog
    • The syslog-ng Insider 2025-08: HDFS; configuration; Prometheus

      Peter Czanik
      Peter Czanik
      Dear syslog-ng users, This is the 133rd issue of syslog-ng Insider, a monthly newsletter that brings you syslog-ng-related news. NEWS Deprecating Java-based drivers from syslog-ng: Is HDFS next? While most Java-based drivers have been deprecated…
      • 1 month ago
      • syslog-ng Community
      • Blog
    • Running syslog-ng in BastilleBSD

      Running syslog-ng in BastilleBSD

      Peter Czanik
      Peter Czanik
      Bastille, the lightweight jail (container) management system for FreeBSD, was already covered here. Recently, they released Bastille 1.0 and BastilleBSD, a hardened FreeBSD variant that comes with Bastille pre-installed. What is Bastille? Bastille…
      • 1 month ago
      • syslog-ng Community
      • Blog
    • Syslog-ng development and AI

      Syslog-ng development and AI

      Peter Czanik
      Peter Czanik
      Recently, several people have asked me about the syslog-ng project’s view on AI. In short, there is cautious optimism: we embrace AI, but it does not take over any critical tasks from humans. But what does this mean for syslog-ng? Well, it means that…
      • 2 months ago
      • syslog-ng Community
      • Blog
    • Dealing with multiple syslog protocols in syslog-ng made easy

      Peter Czanik
      Peter Czanik
      There are multiple syslog protocols with multiple variants. The new transport(auto) option of the syslog() source allows you to support all TCP-based variants with a single source driver. Why? When it comes to syslog, there are many transport options…
      • 2 months ago
      • syslog-ng Community
      • Blog
    • FreeBSD audit source is coming to syslog-ng

      Peter Czanik
      Peter Czanik
      Last year, I wrote a small configuration snippet for syslog-ng: FreeBSD audit source. I published it in a previous blog , and based on feedback, it is already used in production. And soon, it will be available also as part of a syslog-ng release. As…
      • 2 months ago
      • syslog-ng Community
      • Blog
    • Prometheus exporter in syslog-ng

      Prometheus exporter in syslog-ng

      Peter Czanik
      Peter Czanik
      Last year, we published a Prometheus exporter for syslog-ng, implemented in Python . However, syslog-ng 4.9.0 will include one that runs as part of syslog-ng. Needless to say, testing and feedback are very welcome! Before you begin As syslog-ng 4…
      • 2 months ago
      • syslog-ng Community
      • Blog
    • Your first steps configuring syslog-ng

      Your first steps configuring syslog-ng

      Peter Czanik
      Peter Czanik
      Some of our most active users chose syslog-ng because of its detailed and accurate documentation ( https://syslog-ng.github.io/ ). Later I received complaints that it is too detailed, and we need a tutorial: https://peter.czanik.hu/posts/syslog-ng-tutorial…
      • 3 months ago
      • syslog-ng Community
      • Blog
    • The syslog-ng Insider 2025-06: arm64; PAM; testing

      Peter Czanik
      Peter Czanik
      Dear syslog-ng users, This is the 132nd issue of syslog-ng Insider, a monthly newsletter that brings you syslog-ng-related news. NEWS Installing nightly syslog-ng arm64 packages on a Raspberry Pi Last week, I posted about running nightly syslog…
      • 3 months ago
      • syslog-ng Community
      • Blog
    • Deprecating Java-based drivers from syslog-ng: Is HDFS next?

      Deprecating Java-based drivers from syslog-ng: Is HDFS next?

      Peter Czanik
      Peter Czanik
      While most Java-based drivers have been deprecated in syslog-ng years ago, we have recently removed all of them in preparation to syslog-ng 4.9.0. Right now, the only Java-based driver remaining is HDFS, so we want to ask the syslog-ng community if the…
      • 4 months ago
      • syslog-ng Community
      • Blog
    • Testing the new syslog-ng wildcard-file() source options on Linux

      Peter Czanik
      Peter Czanik
      Last year, syslog-ng 4.8.0 improved the wildcard-file() source on FreeBSD and MacOS. Version 4.9.0 will do the same for Linux by using inotify for file and directory monitoring, resulting in faster performance while using significantly less resources…
      • 4 months ago
      • syslog-ng Community
      • Blog
    • Working with One Identity Cloud PAM Linux agent logs in syslog-ng

      Working with One Identity Cloud PAM Linux agent logs in syslog-ng

      Peter Czanik
      Peter Czanik
      One Identity Cloud PAM is one of the latest security products by One Identity. It provides asset management as well as secure and monitored remote access for One Identity Cloud users to hosts on their local network. Last year, I showed you how collect…
      • 4 months ago
      • syslog-ng Community
      • Blog
    • The syslog-ng Insider 2025-05: develop branch; Active Roles; ARM container

      Peter Czanik
      Peter Czanik
      Dear syslog-ng users, This is the 131st issue of syslog-ng Insider, a monthly newsletter that brings you syslog-ng-related news. NEWS Introducing the develop branch of the syslog-ng git repo For many years, the development of syslog-ng happened…
      • 4 months ago
      • syslog-ng Community
      • Blog
    • Syslog-ng 4.8.3 is now available

      Peter Czanik
      Peter Czanik
      Last week, we released syslog-ng 4.8.2 , containing a CVE fix along with improvements to the Elasticsearch and S3 destinations. As such, an upgrade is highly recommended. Version 4.8.3 does not bring any code changes, just a fix to the release process…
      • 4 months ago
      • syslog-ng Community
      • Blog
    • syslog-ng 4.8.2 is now available

      Peter Czanik
      Peter Czanik
      Finally, a new syslog-ng release! As you can see from its version number, this is a bug fix release. It took a bit longer than expected, as we wanted to release it in sync with syslog-ng PE, the commercial variant of syslog-ng. 4.8.2 serves not just as…
      • 4 months ago
      • syslog-ng Community
      • Blog
    • A call for testing the upcoming syslog-ng releases

      Peter Czanik
      Peter Czanik
      While no dates are set to stone yet, we expect a couple of syslog-ng releases in the near future. As version 4.8.1 is used in major Linux distributions and has a couple of known bugs, we will release 4.8.2 to address those. However, we are also working…
      • 5 months ago
      • syslog-ng Community
      • Blog
    • Working with Active Roles debug logs in syslog-ng

      Working with Active Roles debug logs in syslog-ng

      Peter Czanik
      Peter Czanik
      From my previous Active Roles blogs, you could learn how to forward regular Active Roles logs from Windows Event Log to a central syslog-ng server, where it parses, filters, stores and forwards the logs. In this blog, I show you how to work with Active…
      • 5 months ago
      • syslog-ng Community
      • Blog
    • The syslog-ng Insider 2025-04: Elasticsearch beta; Active Roles; RHEL UBI

      Peter Czanik
      Peter Czanik
      Dear syslog-ng users, This is the 130th issue of syslog-ng Insider, a monthly newsletter that brings you syslog-ng-related news. NEWS Testing Elasticsearch 9.0.0 beta1 with syslog-ng Each time a new major Elasticsearch version is released, someone…
      • 5 months ago
      • syslog-ng Community
      • Blog
    • Installing nightly syslog-ng arm64 packages on a Raspberry Pi

      Installing nightly syslog-ng arm64 packages on a Raspberry Pi

      Peter Czanik
      Peter Czanik
      Last week, I posted about running nightly syslog-ng container images on arm64. However, you can also install syslog-ng directly on the host (in my case, a Raspberry Pi 3), running the latest Raspberry OS. Before you begin Right now, syslog-ng nightly…
      • 6 months ago
      • syslog-ng Community
      • Blog
    • Nightly arm64 syslog-ng container builds are now available

      Nightly arm64 syslog-ng container builds are now available

      Peter Czanik
      Peter Czanik
      Recently we enabled nightly syslog-ng builds and container builds for arm64. It means that from now on, you can run the latest syslog-ng on 64bit ARM platforms. Before you begin For this test, I used a Raspberry Pi 3 running the latest Raspberry Pi…
      • 6 months ago
      • syslog-ng Community
      • Blog
    • View related content from anywhere
    • More
    • Cancel
    >
    • Company
      • About Us
      • Careers
      • Contact Us
      • News
    • Resources
      • Blogs
      • Customer Stories
      • Documents
      • Events
      • Videos
    • Support
      • Overview
      • Open Source Edition Mailing List
      • Technical Documentation
    • Social Networks
      • Facebook
      • Github
      • Twitter
      • Youtube
    • Partners
      • Become a Partner
      • Partner Finder
      • Partner Login
    • © 2025 One Identity LLC. ALL RIGHTS RESERVED.
    • Legal
    • Terms of Use
    • Privacy