Skip to content

jbfuzier/syslog-ng

 
 

Repository files navigation

Gitter Build Status Build Status

syslog-ng

syslog-ng is an enhanced log daemon, supporting a wide range of input and output methods: syslog, unstructured text, message queues, databases (SQL and NoSQL alike) and more.

Key features:

  • receive and send RFC3164 and RFC5424 style syslog messages
  • work with any kind of unstructured data
  • receive and send JSON formatted messages
  • classify and structure logs with builtin parsers (csv-parser(), db-parser(), ...)
  • normalize, crunch and process logs as they flow through the system
  • hand on messages for further processing using message queues (like AMQP), files or databases (like PostgreSQL or MongoDB).

Performance:

  • syslog-ng provides performance levels comparable to a large cluster while running on a single node.
  • In the simplest use-case it scales up 600-800k messages per second.
  • But classification, parsing and filtering still produces several tens of thousands messages per second.

Installation from Source

Releases are tagged in the github repository and tarballs ready to compile are made available at BalaBit's syslog-ng tarball repository.

To compile from source, the usual drill applies (assuming you have the required dependencies):

$ ./configure && make && make install

Some of the functionality is compiled only in case the required development libraries are present. The configure script displays a summary of enabled features at the end of its run.

Installation from Binaries

Binaries are available in various Linux distributions and contributors maintain packages of the latest and greatest syslog-ng version for various OSes.

Debian/Ubuntu

Simply invoke the following command as root:

# apt-get install syslog-ng

Latest versions of syslog-ng are available for a wide range of Debian and Ubuntu releases and architectures from an unofficial repository.

Fedora

syslog-ng is available as a Fedora package that you can install using yum:

# yum install syslog-ng

Others

Binaries for other platforms might be available, please check out the official third party page for more information.

About

syslog-ng is an enhanced log daemon, supporting a wide range of input and output methods: syslog, unstructured text, queueing, SQL & NoSQL.

Resources

License

Stars

Watchers

Forks

Packages

No packages published

Languages

  • C 89.3%
  • Python 3.5%
  • Java 3.1%
  • Shell 1.6%
  • Yacc 1.2%
  • Lex 0.4%
  • Other 0.9%