Hi all, Does anyone know of a good Syslog server and analyser for Windows please? I can produce syslogs from my router, with no problem, but wading through them for errors is tedious. What would be ideal, would be if the server could alert me by Email or otherwise, of errors, as they happen. Thanks all for help. All the best Steve -- To subscribe to our News and Special Offers list, go to <https://www.comproom.co.uk/subscribe> https://www.comproom.co.uk/subscribe Computer Room Services 77 Exeter Close Stevenage Hertfordshire SG1 4PW T: +44(0)1438-742286 M: +44(0)7956-334938 F: +44(0)1438-759589 E: <mailto:steve@comproom.co.uk> steve@comproom.co.uk W: <https://www.comproom.co.uk> https://www.comproom.co.uk
Steve, Grey Log is by far pretty good at least it was in the past. It is Linux based but you will have to find a tool to automatically pull and convert Windows Event logs to syslog format. Thanks, Billy -----Original Message----- From: Steve Nutt via Blind-sysadmins <blind-sysadmins@lists.hodgsonfamily.org> Sent: Thursday, June 1, 2023 7:30 AM To: 'Mailing list for blind system administrators' <blind-sysadmins@lists.hodgsonfamily.org> Cc: Steve Nutt <steve@comproom.co.uk> Subject: [Blind-sysadmins] Best accessible Syslog analyser and/or server? Hi all, Does anyone know of a good Syslog server and analyser for Windows please? I can produce syslogs from my router, with no problem, but wading through them for errors is tedious. What would be ideal, would be if the server could alert me by Email or otherwise, of errors, as they happen. Thanks all for help. All the best Steve -- To subscribe to our News and Special Offers list, go to <https://www.comproom.co.uk/subscribe> https://www.comproom.co.uk/subscribe Computer Room Services 77 Exeter Close Stevenage Hertfordshire SG1 4PW T: +44(0)1438-742286 M: +44(0)7956-334938 F: +44(0)1438-759589 E: <mailto:steve@comproom.co.uk> steve@comproom.co.uk W: <https://www.comproom.co.uk> https://www.comproom.co.uk _______________________________________________ Blind-sysadmins mailing list -- blind-sysadmins@lists.hodgsonfamily.org To unsubscribe send an email to blind-sysadmins-leave@lists.hodgsonfamily.org
Graylog recommends Winlogbeat as a Windows log forwarder. More information here: Ingest Windows Event Logs https://go2docs.graylog.org/5-1/getting_in_log_data/ingest_windows_eventlog. html I haven't used Graylog myself, but I've heard good things. Their free community edition may work well for you. -----Original Message----- From: Billy Irwin <billy.irwin@outlook.com> Sent: Thursday, June 1, 2023 6:54 AM To: steve@comproom.co.uk; Mailing list for blind system administrators <blind-sysadmins@lists.hodgsonfamily.org> Subject: [Blind-sysadmins] Re: Best accessible Syslog analyser and/or server? Steve, Grey Log is by far pretty good at least it was in the past. It is Linux based but you will have to find a tool to automatically pull and convert Windows Event logs to syslog format. Thanks, Billy -----Original Message----- From: Steve Nutt via Blind-sysadmins <blind-sysadmins@lists.hodgsonfamily.org> Sent: Thursday, June 1, 2023 7:30 AM To: 'Mailing list for blind system administrators' <blind-sysadmins@lists.hodgsonfamily.org> Cc: Steve Nutt <steve@comproom.co.uk> Subject: [Blind-sysadmins] Best accessible Syslog analyser and/or server? Hi all, Does anyone know of a good Syslog server and analyser for Windows please? I can produce syslogs from my router, with no problem, but wading through them for errors is tedious. What would be ideal, would be if the server could alert me by Email or otherwise, of errors, as they happen. Thanks all for help. All the best Steve -- To subscribe to our News and Special Offers list, go to <https://www.comproom.co.uk/subscribe> https://www.comproom.co.uk/subscribe Computer Room Services 77 Exeter Close Stevenage Hertfordshire SG1 4PW T: +44(0)1438-742286 M: +44(0)7956-334938 F: +44(0)1438-759589 E: <mailto:steve@comproom.co.uk> steve@comproom.co.uk W: <https://www.comproom.co.uk> https://www.comproom.co.uk _______________________________________________ Blind-sysadmins mailing list -- blind-sysadmins@lists.hodgsonfamily.org To unsubscribe send an email to blind-sysadmins-leave@lists.hodgsonfamily.org _______________________________________________ Blind-sysadmins mailing list -- blind-sysadmins@lists.hodgsonfamily.org To unsubscribe send an email to blind-sysadmins-leave@lists.hodgsonfamily.org
Steve's router can send out logs via Syslog so Graylog can ingest directly without having a forwarder. Andrew. -----Original Message----- From: ccn@chrisnestrud.com <ccn@chrisnestrud.com> Sent: Thursday, June 1, 2023 1:16 PM To: 'Mailing list for blind system administrators' <blind-sysadmins@lists.hodgsonfamily.org>; steve@comproom.co.uk Subject: [Blind-sysadmins] Re: Best accessible Syslog analyser and/or server? Graylog recommends Winlogbeat as a Windows log forwarder. More information here: Ingest Windows Event Logs https://go2docs.graylog.org/5-1/getting_in_log_data/ingest_windows_eventlog. html I haven't used Graylog myself, but I've heard good things. Their free community edition may work well for you. -----Original Message----- From: Billy Irwin <billy.irwin@outlook.com> Sent: Thursday, June 1, 2023 6:54 AM To: steve@comproom.co.uk; Mailing list for blind system administrators <blind-sysadmins@lists.hodgsonfamily.org> Subject: [Blind-sysadmins] Re: Best accessible Syslog analyser and/or server? Steve, Grey Log is by far pretty good at least it was in the past. It is Linux based but you will have to find a tool to automatically pull and convert Windows Event logs to syslog format. Thanks, Billy -----Original Message----- From: Steve Nutt via Blind-sysadmins <blind-sysadmins@lists.hodgsonfamily.org> Sent: Thursday, June 1, 2023 7:30 AM To: 'Mailing list for blind system administrators' <blind-sysadmins@lists.hodgsonfamily.org> Cc: Steve Nutt <steve@comproom.co.uk> Subject: [Blind-sysadmins] Best accessible Syslog analyser and/or server? Hi all, Does anyone know of a good Syslog server and analyser for Windows please? I can produce syslogs from my router, with no problem, but wading through them for errors is tedious. What would be ideal, would be if the server could alert me by Email or otherwise, of errors, as they happen. Thanks all for help. All the best Steve -- To subscribe to our News and Special Offers list, go to <https://www.comproom.co.uk/subscribe> https://www.comproom.co.uk/subscribe Computer Room Services 77 Exeter Close Stevenage Hertfordshire SG1 4PW T: +44(0)1438-742286 M: +44(0)7956-334938 F: +44(0)1438-759589 E: <mailto:steve@comproom.co.uk> steve@comproom.co.uk W: <https://www.comproom.co.uk> https://www.comproom.co.uk _______________________________________________ Blind-sysadmins mailing list -- blind-sysadmins@lists.hodgsonfamily.org To unsubscribe send an email to blind-sysadmins-leave@lists.hodgsonfamily.org _______________________________________________ Blind-sysadmins mailing list -- blind-sysadmins@lists.hodgsonfamily.org To unsubscribe send an email to blind-sysadmins-leave@lists.hodgsonfamily.org _______________________________________________ Blind-sysadmins mailing list -- blind-sysadmins@lists.hodgsonfamily.org To unsubscribe send an email to blind-sysadmins-leave@lists.hodgsonfamily.org
Hi Andrew, So is Graylog itself available for Windows? Thanks. All the best Steve -----Original Message----- From: Andrew Hodgson <andrew@hodgson.io> Sent: Thursday, June 1, 2023 2:15 PM To: Mailing list for blind system administrators <blind-sysadmins@lists.hodgsonfamily.org> Subject: [Blind-sysadmins] Re: Best accessible Syslog analyser and/or server? Steve's router can send out logs via Syslog so Graylog can ingest directly without having a forwarder. Andrew. -----Original Message----- From: ccn@chrisnestrud.com <ccn@chrisnestrud.com> Sent: Thursday, June 1, 2023 1:16 PM To: 'Mailing list for blind system administrators' <blind-sysadmins@lists.hodgsonfamily.org>; steve@comproom.co.uk Subject: [Blind-sysadmins] Re: Best accessible Syslog analyser and/or server? Graylog recommends Winlogbeat as a Windows log forwarder. More information here: Ingest Windows Event Logs https://go2docs.graylog.org/5-1/getting_in_log_data/ingest_windows_eventlog. html I haven't used Graylog myself, but I've heard good things. Their free community edition may work well for you. -----Original Message----- From: Billy Irwin <billy.irwin@outlook.com> Sent: Thursday, June 1, 2023 6:54 AM To: steve@comproom.co.uk; Mailing list for blind system administrators <blind-sysadmins@lists.hodgsonfamily.org> Subject: [Blind-sysadmins] Re: Best accessible Syslog analyser and/or server? Steve, Grey Log is by far pretty good at least it was in the past. It is Linux based but you will have to find a tool to automatically pull and convert Windows Event logs to syslog format. Thanks, Billy -----Original Message----- From: Steve Nutt via Blind-sysadmins <blind-sysadmins@lists.hodgsonfamily.org> Sent: Thursday, June 1, 2023 7:30 AM To: 'Mailing list for blind system administrators' <blind-sysadmins@lists.hodgsonfamily.org> Cc: Steve Nutt <steve@comproom.co.uk> Subject: [Blind-sysadmins] Best accessible Syslog analyser and/or server? Hi all, Does anyone know of a good Syslog server and analyser for Windows please? I can produce syslogs from my router, with no problem, but wading through them for errors is tedious. What would be ideal, would be if the server could alert me by Email or otherwise, of errors, as they happen. Thanks all for help. All the best Steve -- To subscribe to our News and Special Offers list, go to <https://www.comproom.co.uk/subscribe> https://www.comproom.co.uk/subscribe Computer Room Services 77 Exeter Close Stevenage Hertfordshire SG1 4PW T: +44(0)1438-742286 M: +44(0)7956-334938 F: +44(0)1438-759589 E: <mailto:steve@comproom.co.uk> steve@comproom.co.uk W: <https://www.comproom.co.uk> https://www.comproom.co.uk _______________________________________________ Blind-sysadmins mailing list -- blind-sysadmins@lists.hodgsonfamily.org To unsubscribe send an email to blind-sysadmins-leave@lists.hodgsonfamily.org _______________________________________________ Blind-sysadmins mailing list -- blind-sysadmins@lists.hodgsonfamily.org To unsubscribe send an email to blind-sysadmins-leave@lists.hodgsonfamily.org _______________________________________________ Blind-sysadmins mailing list -- blind-sysadmins@lists.hodgsonfamily.org To unsubscribe send an email to blind-sysadmins-leave@lists.hodgsonfamily.org _______________________________________________ Blind-sysadmins mailing list -- blind-sysadmins@lists.hodgsonfamily.org To unsubscribe send an email to blind-sysadmins-leave@lists.hodgsonfamily.org
Hi. No I don't think it works on Windows which is why I didn't suggest it in the first place. Andrew. -----Original Message----- From: Steve Nutt via Blind-sysadmins <blind-sysadmins@lists.hodgsonfamily.org> Sent: Thursday, June 1, 2023 2:55 PM To: 'Mailing list for blind system administrators' <blind-sysadmins@lists.hodgsonfamily.org> Cc: Steve Nutt <steve@comproom.co.uk> Subject: [Blind-sysadmins] Re: Best accessible Syslog analyser and/or server? Hi Andrew, So is Graylog itself available for Windows? Thanks. All the best Steve -----Original Message----- From: Andrew Hodgson <andrew@hodgson.io> Sent: Thursday, June 1, 2023 2:15 PM To: Mailing list for blind system administrators <blind-sysadmins@lists.hodgsonfamily.org> Subject: [Blind-sysadmins] Re: Best accessible Syslog analyser and/or server? Steve's router can send out logs via Syslog so Graylog can ingest directly without having a forwarder. Andrew. -----Original Message----- From: ccn@chrisnestrud.com <ccn@chrisnestrud.com> Sent: Thursday, June 1, 2023 1:16 PM To: 'Mailing list for blind system administrators' <blind-sysadmins@lists.hodgsonfamily.org>; steve@comproom.co.uk Subject: [Blind-sysadmins] Re: Best accessible Syslog analyser and/or server? Graylog recommends Winlogbeat as a Windows log forwarder. More information here: Ingest Windows Event Logs https://go2docs.graylog.org/5-1/getting_in_log_data/ingest_windows_eventlog. html I haven't used Graylog myself, but I've heard good things. Their free community edition may work well for you. -----Original Message----- From: Billy Irwin <billy.irwin@outlook.com> Sent: Thursday, June 1, 2023 6:54 AM To: steve@comproom.co.uk; Mailing list for blind system administrators <blind-sysadmins@lists.hodgsonfamily.org> Subject: [Blind-sysadmins] Re: Best accessible Syslog analyser and/or server? Steve, Grey Log is by far pretty good at least it was in the past. It is Linux based but you will have to find a tool to automatically pull and convert Windows Event logs to syslog format. Thanks, Billy -----Original Message----- From: Steve Nutt via Blind-sysadmins <blind-sysadmins@lists.hodgsonfamily.org> Sent: Thursday, June 1, 2023 7:30 AM To: 'Mailing list for blind system administrators' <blind-sysadmins@lists.hodgsonfamily.org> Cc: Steve Nutt <steve@comproom.co.uk> Subject: [Blind-sysadmins] Best accessible Syslog analyser and/or server? Hi all, Does anyone know of a good Syslog server and analyser for Windows please? I can produce syslogs from my router, with no problem, but wading through them for errors is tedious. What would be ideal, would be if the server could alert me by Email or otherwise, of errors, as they happen. Thanks all for help. All the best Steve -- To subscribe to our News and Special Offers list, go to <https://www.comproom.co.uk/subscribe> https://www.comproom.co.uk/subscribe Computer Room Services 77 Exeter Close Stevenage Hertfordshire SG1 4PW T: +44(0)1438-742286 M: +44(0)7956-334938 F: +44(0)1438-759589 E: <mailto:steve@comproom.co.uk> steve@comproom.co.uk W: <https://www.comproom.co.uk> https://www.comproom.co.uk _______________________________________________ Blind-sysadmins mailing list -- blind-sysadmins@lists.hodgsonfamily.org To unsubscribe send an email to blind-sysadmins-leave@lists.hodgsonfamily.org _______________________________________________ Blind-sysadmins mailing list -- blind-sysadmins@lists.hodgsonfamily.org To unsubscribe send an email to blind-sysadmins-leave@lists.hodgsonfamily.org _______________________________________________ Blind-sysadmins mailing list -- blind-sysadmins@lists.hodgsonfamily.org To unsubscribe send an email to blind-sysadmins-leave@lists.hodgsonfamily.org _______________________________________________ Blind-sysadmins mailing list -- blind-sysadmins@lists.hodgsonfamily.org To unsubscribe send an email to blind-sysadmins-leave@lists.hodgsonfamily.org _______________________________________________ Blind-sysadmins mailing list -- blind-sysadmins@lists.hodgsonfamily.org To unsubscribe send an email to blind-sysadmins-leave@lists.hodgsonfamily.org
participants (4)
-
Andrew Hodgson -
Billy Irwin -
ccn@chrisnestrud.com -
Steve Nutt