Nagios Support Forum

Posted: **Wed Jan 16, 2019 10:12 pm**

Good Day,

After I restart rsyslog in a monitored server by nagios log server. It generated a file named: nls-state-opt_snort-alerts_major.log

Code: Select all

<Obj:1:strm:1:
+iCurrFNum:2:1:1:
+pszFName:1:27:/opt/snort-alerts/major.log:
+iMaxFiles:2:1:0:
+bDeleteOnClose:2:1:0:
+sType:2:1:2:
+tOperationsMode:2:1:1:
+tOpenMode:2:3:384:
+iCurrOffs:2:1:0:
+inode:2:1:0:
+bPrevWasNL:2:1:0:
>End

How do you interpret the files generate from /var/lib/rsyslog?

Posted: **Thu Jan 17, 2019 11:12 am**

This file is used to keep track of the offset in the file so rsyslog knows where it left off the last time it looked in the file for new lines to send to Log Server.

This file is created as a function of rsyslog.

Posted: **Thu Jan 17, 2019 1:54 pm**

Alright, understood. Thanks a lot!

Posted: **Thu Jan 17, 2019 2:12 pm**

floki wrote:Alright, understood. Thanks a lot!

Glad to help.

Locking thread

Nagios Support Forum

Log file from rsyslog

Log file from rsyslog

Re: Log file from rsyslog

Re: Log file from rsyslog

Re: Log file from rsyslog