Using one NLS to forward logs to another NLS
-
mgarrity10
- Posts: 6
- Joined: Thu Mar 08, 2018 3:17 pm
Using one NLS to forward logs to another NLS
Is it possible to use an output rule to forward all logs from one Nagios Log Server instance to a second Nagios Log Server Instance? If so, how is this done?
Re: Using one NLS to forward logs to another NLS
You can configure the forwarding NLS machine with an output like so under Configure > Global > Global Config > Show Outputs:
elasticsearch {
hosts => ['w.x.y.z']
document_type => '%{type}'
workers => 4
}
Where w.x.y.z is the IP address of the receiveing NLS machine.
The recieving machine's elasticsearch instance only listens on localhost by default, but you can change this by editing /usr/local/nagioslogserver/elasticsearch/config/elasticsearch.yml, and changing the line:
http.host: "localhost"
to:
http.host: 0.0.0.0
and then restarting elasticsearch:
service elasticsearch restart
That should be all there is to set it up. All records sent to he first instance will now be forwarded.
elasticsearch {
hosts => ['w.x.y.z']
document_type => '%{type}'
workers => 4
}
Where w.x.y.z is the IP address of the receiveing NLS machine.
The recieving machine's elasticsearch instance only listens on localhost by default, but you can change this by editing /usr/local/nagioslogserver/elasticsearch/config/elasticsearch.yml, and changing the line:
http.host: "localhost"
to:
http.host: 0.0.0.0
and then restarting elasticsearch:
service elasticsearch restart
That should be all there is to set it up. All records sent to he first instance will now be forwarded.
As of May 25th, 2018, all communications with Nagios Enterprises and its employees are covered under our new Privacy Policy.