* Daniel Pocock <daniel@pocock.pro> [2014-03-04 15:49:25 +0100]: > > I didn't see any existing package of LogAnalyzer from Adiscon, the > people who make rsyslog - is there any specific reason for not packaging > it or it is just not something anybody needed yet? It is GPL: > > http://loganalyzer.adiscon.com/ > > http://download.adiscon.com/loganalyzer/loganalyzer-3.6.5.tar.gz > > The rsyslog mongodb output module and the PHP mongodb modules are now in > wheezy-backports. This would appear to be sufficient to do something like: > > rsyslog => mongodb => loganalyzer > > Has anybody else tried that or does anybody have any comments on it (or > recommended alternatives)? > > http://loganalyzer.adiscon.com/articles/using-mongodb-with-rsyslog-and-loganalyzer/ Hi, At work, I have been investigating the ElasticSearch + Logstash[1] + Kibana[2] combo, which has been pretty solid in my tests so far (feeding it 10GB or so of firewall logs a day, yes, that thing is noisy). There is no Debian packaging of that stack yet (the RFP of logstash is at [3]), and I haven't investigated the upstream-provided repositories either (AIUI, they appeared after my tests, so I ran the stuff from the "flatjar" bundle, ick). [1] http://www.elasticsearch.org/overview/kibana/ [2] http://www.elasticsearch.org/overview/logstash/ [3] https://bugs.debian.org/664841 Cheers and HTH, -- Nicolas Dandrimont "Problem solving under linux has never been the circus that it is under AIX." (By Pete Ehlke in comp.unix.aix)
Attachment:
signature.asc
Description: Digital signature