Navigation Menu

Skip to content

tslenter/RS

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

175 Commits

doc

doc

 
 

.readthedocs.yaml

.readthedocs.yaml

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

rseinstaller

rseinstaller

 
 

Repository files navigation

Documentation Status Website remotesyslog.com GPLv3 license

Remote Syslog

With the Remote Syslog Master script you are able to install and control the following products:

-RSC Core
-RSE Core
-RSC Web
-RSE Web
-RSX Web
-RSL Web

Documention and information can be found here:

https://remote-syslog.readthedocs.io/

https://www.remotesyslog.com/

1. Donation and help

1.1 Donation

Crypto:

BTC (Bitcoin): bc1qulyuywjkeamqu0h9ctuj5cla8u0pagkaa83hf6
LTC (Litecoin): ltc1q25j4yxg9dkwknrh4a7fvndtt3358c4gjnsf9qv
BCH (Bitcoin Cash): qq9qd6gshp4n9gkk3zy9505p8j8jlhur4uv0lxv2d8

PayPal:

paypal

1.2 Funds

All donations and other funds will be used to cover cost of this project and to improve tests/plugins/core scripts. The roadmap will display new functions or products. Check https://www.remotesyslog.com for more information.

2. Tips for RSX/RSE

  • Make a good lifecycle policy to prevent a full disk (Just monitor it for some time).
  • Everything is built in a block structure so you can disable default services and add your own. This block structure allows you to disable the RSX/RSE concept and go an elastic stack setup, or something else.
  • By default everything Syslog can be received at port 514 UDP/TCP, we do recommend 514/UDP and no 514/TCP (UDP is faster and we recommend that for all services).
  • RSX/RSE is capable of running a cluster setup, we recommend a cluster of 3 for full redundancy. When running a cluster make sure you create a good update plan.
  • By default we use Syslog-ng as core, this parses all syslog data. If you like to create fields for smart searches within the Kibana interface this is required.
  • Check out the active directory (AD) setup. The RSX/RSE authentication page works with Linux PAM. PAM can beconfigured to use a AD.
  • The default login name for RSX/RSE is the created with the Debian/Ubuntu installation. Do NOT use a root user! If you only created a root user, create a normal user account for the login.
  • We do have some patterns preconfigured. (CheckPoint, Cisco, Microsoft, F5, and more) You probably need to edit them to match the infrastructure.
  • Because we use open source software everything is free and patterns can be found with a good google search as well.

Find more plugins: https://github.com/syslog-ng/syslog-ng/tree/master/scl

3. Help

To improve the code and functions we like to have you help. Send your idea or code to: info@remotesyslog.com or create a pull request. We will review it and add it to this project.

About

Remote Syslog Master script

www.remotesyslog.com/

Topics

java linux shell php elasticsearch storage text logging remote syslog plain

Resources

Readme

License

GPL-3.0 license
Activity

Stars

2 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages