Deleting Logs from a single host

This support forum board is for support questions relating to Nagios Log Server, our solution for managing and monitoring critical log data.
Locked
plusonetech
Posts: 5
Joined: Tue Apr 11, 2017 3:37 pm

Deleting Logs from a single host

Post by plusonetech »

I was adding some additional windows servers to my log server yesterday and one of the servers I added had an auditing policy with everything enabled. The end result was in one day it logged 75GB in events, I have stopped that server from sending logs to the log server but would like to remove the logs sent by just that host yesterday. How would I go about doing this?
Top
User avatar
cdienger
Support Tech
Posts: 5045
Joined: Tue Feb 07, 2017 11:26 am

Re: Deleting Logs from a single host

Post by cdienger »

Something like this should do the trick(change the IP as needed):

Code: Select all

curl -XDELETE 'http://localhost:9200/logstash-*/_query?q=host:192.168.5.55'
As of May 25th, 2018, all communications with Nagios Enterprises and its employees are covered under our new Privacy Policy.
Top
plusonetech
Posts: 5
Joined: Tue Apr 11, 2017 3:37 pm

Re: Deleting Logs from a single host

Post by plusonetech »

That worked perfectly, thanks for your help.
Top
User avatar
cdienger
Support Tech
Posts: 5045
Joined: Tue Feb 07, 2017 11:26 am

Re: Deleting Logs from a single host

Post by cdienger »

Glad to hear!
As of May 25th, 2018, all communications with Nagios Enterprises and its employees are covered under our new Privacy Policy.
Top
Locked

Return to “Nagios Log Server”