klausneil
November 13, 2018, 9:56pm
1
Hi, i configure graylog on ubuntu server 18, all right but i install NXLOG on my Windows Server and configure the file nxlog.conf with this information
define ROOT C:\Program Files (x86)\nxlog
Moduledir %ROOT%\modules
Module xm_gelf
# Use 'im_mseventlog' for Windows XP and 2003
Module im_msvistalog
Exec if ($EventID == 4202 or $EventID == 4208 or $EventID == 4302 or $EventID == 4304 or $EventID == 5004) drop();\
else{\
if ( $EventType == "INFO" ) $SyslogSeverityValue = 6;\
if ( $EventType == "WARNING" ) $SyslogSeverityValue = 4;\
if ( $EventType == "ERROR" ) $SyslogSeverityValue = 3;\
}
Module om_udp
Host 192.168.10.12
Port 12201
OutputType GELF
<Route 1>
But in my graylog i not see information of the server. Please help me.
jan
November 14, 2018, 7:00am
2
Please format your posting ( https://community.graylog.org/faq#format-markdown ) than it might happen that someone helps you.
Did you check if no Firewall prevents the messages coming in? Did you create a UDP GELF Input on Port 12201? Did you check if the Windows host can reach Graylog?
system
November 28, 2018, 7:00am
3
This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.
