I’ve asked this question before but because of some reasons, i can’t manage the topic, so I think that, fresh topic will be more useful for everyone.
I have graylog2 in my CentOS 7 server and now I can collect all log datas with this server.
And I have just finished Wordpress server in my another server ( both 2 server in the same network ). I need send these audit logs to my Graylog2 server and monitoring them.
How can I do it ?
Note: I have root privileges for both two server.
If they need any information from my servers I will be check here at certain intervals.
I think it stores somewhere inside of wordpress files or in the database of wordpress server. I can use bash script to reach Wordpress or I can find a way, this is easy part actually . I need finout a way to send it. Here is my wordpress admin panes and the can see the audit part left of the screen.
If you have access to the audit log entries, you can use any format and protocol Graylog supports, such as GELF, Syslog (RFC 5424), or new-line separated plaintext, to send them to Graylog and process them further.
The question is, how ı will reach Wordpress log files and the config file of these logs have no ip adressing module. For example, in rsys logs, there are some settings that I can send them a specific IP adress and port but in this case, there nothing someting like this