Nagios Support Forum

We are currently evaluating Log Server for use in our environment as an alternative to spending the staff time to build and actively maintain our own ELK stack, and I have a some questions.

Number 1:
What is the easiest way to get a report of all Log Sources for a Log Server cluster where individual log sources/servers may be configured to send logs to one or more of the cluster nodes? Ideally, I would like to export a CSV listing the log source name or IP, the nodes logs which are receiving logs for that log source, and with an option for filtering by specific log types or facility labels.

Number 2:
Does Nagios maintain a library of canned Log Server/Logstash plugins for various log types?
I'm specifically looking for something to process java and tomcat logs, mail server logs, and the like, and have not found anything particularly useful.

Thanks,

Jaimie Livingston

The absolute easiest way to get a list of servers connected to Log Server is from the Home screen, in the upper left it lists the number of Unique Hosts, and in that same section is a link labeled Report. This brings you to a basic list of unique hosts reporting to Log Server.

This list is based on hosts that have sent logs within the last 24 hours. Each host is a link that you can click on, and it will bring you to the Dashboards with a query showing you all logs related to that host. This is the best place to create more detailed reports on each host. Once you create a dashboard that has the information you want, you can generate a shareable link.

As far as a library of plugins, so far everything we have is included with Log Server. On the Exchange site, it looks like there are some Dashboards available. But as far as filtering specific applications, we have Apache, IIS, MySQL, MS SQL Server, and PHP, which are shown on the Add Log Source page.