tnt4j-syslogd
Syslogd over TNT4J implementation
Streaming Syslog over TNT4J
Please follow these steps to stream syslog over TNT4J:
- Configure
config/tnt4j.properties
,- Default configuration is under
com.jkoolcloud.jesl.net.syslogd
stanza.
- Default configuration is under
- Run JESL syslogd
<home>/bin/jksysd > jksysd.json
.- By default JESL
jksysd
binds to TCP port5140
and writes out JSON formatted syslog messages. - JSON output can be played back using
<home>/bin/jksys
utility.
- By default JESL
- Configure
syslog/rsyslog
to forward to JESL syslog daemon over TCP (hostname
is where JESLjksysd
is running)- RFC 3164 (e.g.
*.* @@hostname:5140
) - RFC 5424 (e.g.
*.* @@hostname:5140;RSYSLOG_SyslogProtocol23Format
)
- RFC 3164 (e.g.
- Sending syslog messages from command line (
<home>/bin/jksys
):
$ jksys -h localhost -p 5140 -l error -f user tcp "appl-name[883]: my syslog mesasge about appl-name pid=883"
- Sending PCI messages from command line (
<home>/bin/jksys
):
$ jksys -h localhost -p 5140 -l error -f user tcp "#pci(userId=john,eventType=audit,status=success,origination=CreditCards,affectedResource=Payment)"
- Playback syslog JSON messages from command line (
<home>/bin/jksys
):
$ jksys -h localhost -p 5140 -f jksysd.json tcp
where jksysd.json
is JSON output of JESL syslog daemon.
That should do it.
NOTE: Currently supports (RFC 3164) and the Structured Syslog protocol (RFC 5424).
Project Dependencies
- JDK 1.8+
- TNT4J (https://github.com/Nastel/TNT4J)
- Gralog2 Syslog4j (https://github.com/Graylog2/syslog4j-graylog2)
- Joda Time (http://www.joda.org/joda-time/)
- GSON (https://github.com/google/gson)
Integrations
- jKoolCloud (https://www.jkoolcloud.com)
Please use JCenter or Maven and dependencies will be downloaded automatically.