tnt4j-syslogd
Syslogd over TNT4J implementation
Streaming Syslog over TNT4J
Please follow these steps to stream syslog over TNT4J:
- Configure
config/tnt4j.properties,- Default configuration is under
com.jkool.jesl.net.syslogdstanza.
- Default configuration is under
- Run JESL syslogd
<home>/bin/jksysd > jksysd.json.- By default JESL
jksysdbinds to TCP port5140and writes out JSON formatted syslog messages. - JSON output can be played back using
<home>/bin/jksysutility.
- By default JESL
- Configure
syslog/rsyslogto forward to JESL syslog daemon over TCP (hostnameis where JESLjksysdis running)- RFC 3164 (e.g.
*.* @@hostname:5140) - RFC 5424 (e.g.
*.* @@hostname:5140;RSYSLOG_SyslogProtocol23Format)
- RFC 3164 (e.g.
- Sending syslog messages from command line (
<home>/bin/jksys):
$ jksys -h localhost -p 5140 -l error -f user tcp "appl-name[883]: my syslog mesasge about appl-name pid=883"
- Sending PCI messages from command line (
<home>/bin/jksys):
$ jksys -h localhost -p 5140 -l error -f user tcp "#pci(userId=john,eventType=audit,status=success,origination=CreditCards,affectedResource=Payment)"
- Playback syslog JSON messages from command line (
<home>/bin/jksys):
$ jksys -h localhost -p 5140 -f jksysd.json tcp
where jksysd.json is JSON output of JESL syslog daemon.
That should do it.
NOTE: Currently supports (RFC 3164) and the Structured Syslog protocol (RFC 5424).
Project Dependencies
- JDK 1.6+
- TNT4J (https://github.com/Nastel/TNT4J)
- Syslog4j (http://syslog4j.org/)
- Joda Time (http://www.joda.org/joda-time/)
- GSON (https://github.com/google/gson)
Integrations
- jKoolCloud (https://www.jkoolcloud.com)