Dears, Has anybody tried to monitor nginx web server using RSA
Netwitness? If so please share the config sample to forward logs to
Netwitness from linux web server? I tried apache log source
configuration guide with no luck. Any help appreciated.
Rafael Sampaio wrote: Hi Azim, The hostname and timestamp are normal in
Syslog messages and both are expected by the Apache parser. It can
parser messages with and without those headers, so it should be working
normally.What is the device.type in you...
Dear Rafael, Everything has been set up as you broadly described and
Apache HTTP Server Event Source Configuration Guide used for rsyslog and
log format configuration. In the access log file logs look the same as
they should be and configured. But Rs...
Dear Rafael, I used the link to setup syslog via nginx. But experienced
the same issue as it was with rsyslog. The logs coming to RSA Netwitness
with extra "syslog header" which repeats Date and contains Tag and
hostname, despite of their local stora...
