HOME

TheInfoList



Click Here for Items Related To - Rsyslog
OR:
Rsyslog on:   [Wikipedia]   [Google]   [Amazon]

Rsyslog is an
open-source Open source is source code that is made freely available for possible modification and redistribution. Products include permission to use the source code, design documents, or content of the product. The open-source model is a decentralized sof ...
software utility used on
UNIX Unix (; trademarked as UNIX) is a family of multitasking, multiuser computer operating systems that derive from the original AT&T Unix, whose development started in 1969 at the Bell Labs research center by Ken Thompson, Dennis Ritchie, and ot ...
and
Unix-like A Unix-like (sometimes referred to as UN*X or *nix) operating system is one that behaves in a manner similar to a Unix system, although not necessarily conforming to or being certified to any version of the Single UNIX Specification. A Unix-li ...
computer systems for forwarding log messages in an IP
network Network, networking and networked may refer to: Science and technology * Network theory, the study of graphs as a representation of relations between discrete objects * Network science, an academic field that studies complex networks Mathematics ...
. It implements the basic
syslog In computing, syslog is a standard for message logging. It allows separation of the software that generates messages, the system that stores them, and the software that reports and analyzes them. Each message is labeled with a facility code, i ...
protocol, extends it with content-based filtering, rich filtering capabilities, queued operations to handle offline outputs, support for different module outputs, flexible configuration options and adds features such as using TCP for transport. The official RSYSLOG website defines the utility as "the rocket-fast system for log processing".


Protocol

Rsyslog uses the standard
BSD The Berkeley Software Distribution or Berkeley Standard Distribution (BSD) is a discontinued operating system based on Research Unix, developed and distributed by the Computer Systems Research Group (CSRG) at the University of California, Berk ...
syslog protocol, specified in
RFC RFC may refer to: Computing * Request for Comments, a memorandum on Internet standards * Request for change, change management * Remote Function Call, in SAP computer systems * Rhye's and Fall of Civilization, a modification for Sid Meier's Civ ...
3164. As the text of RFC 3164 is an informational description and not a standard, various incompatible extensions of it emerged. Rsyslog supports many of these extensions. The format of relayed messages can be customized. The most important extensions of the original protocol supported by rsyslog are: *
ISO 8601 ISO 8601 is an international standard covering the worldwide exchange and communication of date and time-related data. It is maintained by the Geneva-based International Organization for Standardization (ISO) and was first published in 1988, wi ...
timestamp with millisecond granularity and time zone information * the addition of the name of relays in the host fields to make it possible to track the path a given message has traversed * reliable transport using TCP * support GSS-API and TLS * logging directly into various database engines. * support for RFC 5424, RFC 5425, RFC 5426 * support for RELP * support for buffered operation modes where messages are buffered locally if the receiver is not ready * complete input/output support for systemd journal


History

The rsyslog project began in 2004, when
Rainer Gerhards Rainer Gerhards (born March 11, 1967) is a German software engineer, network engineer, and protocol designer best known for his Computer data logging work including Rsyslog and Reliable Event Logging Protocol. He began developing Rsyslog in 2 ...
, the primary author of rsyslog, decided to write a new strong syslog daemon to compete with syslog-ng, because, according to the author, "A new major player will prevent monocultures and provide a rich freedom of choice." Rainer Gerhards worked on rsyslog inside his own company, Adiscon GmbH.


Related RFCs and working groups

* RFC 3164 - The BSD syslog Protocol (obsoleted by RFC 5424) * RFC 5424 - The Syslog Protocol (obsoletes RFC 3164) * RFC 5425 - Transport Layer Security Mapping for Syslog * RFC 5426 - Transmission of Syslog Messages over UDP


See also

*
NXLog NXLog is a multi-platform log collection and centralization tool that offers log processing features, including log enrichment (parsing, filtering, and conversion) and log forwarding. In concept NXLog is similar to syslog-ng or Rsyslog but it i ...
*
fluentd Fluentd is a cross platform open-source data collection software project originally developed at Treasure Data. It is written primarily in the Ruby programming language. Overview Fluentd was positioned for " big data", semi- or un-structured ...
*
logstash Elasticsearch is a search engine based on the Lucene library. It provides a distributed, multitenant-capable full-text search engine with an HTTP web interface and schema-free JSON documents. Elasticsearch is developed in Java and is dual- ...
*
journald systemd is a software suite that provides an array of system components for Linux operating systems. Its main aim is to unify service configuration and behavior across Linux distributions; Its primary component is a "system and service manage ...
– incorporates
syslog In computing, syslog is a standard for message logging. It allows separation of the software that generates messages, the system that stores them, and the software that reports and analyzes them. Each message is labeled with a facility code, i ...
-like functionality * syslog-ng


References


External links

* * * {{Freshmeat, rsyslog Internet protocols Internet Standards System administration Network management Free network-related software