Link to home
Start Free TrialLog in
Avatar of Sungpill Han
Sungpill Han

asked on

Syslog-ng works. Now what? How to filter and manage?

It is funny after I finished setting up syslog-ng, there are not many open source syslog manaagement tools available.

I have a working Linux with syslog-ng ready to receive logs from my router,switches, and firewall. The daily log data amount is probably 2GB.

I made syslog to be named by host-date.log but need some open source tool to browse,alert.

Will I end up buying paid software like Balabit or Nagios?
ASKER CERTIFIED SOLUTION
Avatar of Sudeep Sharma
Sudeep Sharma
Flag of India image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of Sungpill Han
Sungpill Han

ASKER

Nagios is free only for 500MB daily. it is sufficient for now,but as we add more switches and routers for logging, It will be over the limit.
I think most of them have this limitation as i searched.

Thank you all.
Are you referring to Nagios XI or to the standard Nagios in the distribution?  I'm not sure where the 500MB comes into play.
Thank you. I'll look into Nagios Log Server.
Actually, I'm referring the nagios the network monitoring software.  Nagios XI is an enhanced version of Nagios 3 (which I use).
I don't see Nagios Network Analyzer is listed in Projects (free):  https://www.nagios.org/projects/
but on products(commercial).
Can you find me the link to it?
Not the analyzer but the monitoring.  Analyzers are great add-ons.  If you have netflow running, you can look at FlowViewer.  The integrated commercial tools are nicer than the freeware from what I've seen.