Nagios log server without syslog.

This support forum board is for support questions relating to Nagios Log Server, our solution for managing and monitoring critical log data.
Locked
njlemos
Posts: 1
Joined: Mon Jan 16, 2017 11:53 am

Nagios log server without syslog.

Post by njlemos »

Hi guys,

I'm evaluate the NLS and i have a question...

In my company ,we have containers in a docker. In each container, because of security rules, we don't have syslog.

Is it possible collect the logs in containers without installing syslog?


Thanks :D

Mod Edit: Moved to the Nagios Log Server section.
User avatar
mcapra
Posts: 3739
Joined: Thu May 05, 2016 3:54 pm

Re: Nagios log server without syslog.

Post by mcapra »

Having a syslog agent (rsyslog, syslog-ng, nxlog, etc) is certainly valuable, but it's not required to get your logs into Nagios Log Server. You can send plain TCP/UDP messages using something like netcat to a TCP/UDP Nagios Log Server input (2056 is the default configured port), though if you want to get your logs in real-time you would still need some way to figure out which log lines were already transported to Nagios Log Server. Most syslog agents would take care of that consideration for you by either counting line numbers, referencing a spooler file, etc.

We also offer a very simple wrapper script that can do one-off files (it's not designed for a constantly appended file) with a few additional options. In the "Add a Log Source" section of the Nagios Log Server GUI, it's usage is described. The full URL is:

Code: Select all

http://<your_nls_host>/nagioslogserver/source-setup/import
Former Nagios employee
https://www.mcapra.com/
Locked