Syslog

Enhancing your logging capabilities with Splunk

If you come from a Linux or Unix background, reading through logs is something you come to expect. It is something you have developed quick and easy ways to filter through large volumes of information on the fly, but still doing this manually.

If you come from a Windows background, your understanding of logging is checking what is in the Windows Event Viewer or using Notepad to close/reopen a text file for a specific application you are running.

Splunk is a web based tool that can help you filter through all of those logs, but give you the exact results you are searching for.

This article will take you through setting up Splunk in your environment, and how to quickly search for information for exactly what you are looking for.

Continue reading “Enhancing your logging capabilities with Splunk” »

Configuring Syslog in Red Hat Enterprise Linux 6

So, I was having a discussion with a friend who has requested a few articles on systems monitoring. As many monitoring solutions utilize central logging, I thought I would start off with a good old fashioned Syslog server.

In this example, I use the below details

Syslog Server: syslog.example.com
Client Server: server01.example.com

Continue reading “Configuring Syslog in Red Hat Enterprise Linux 6” »