Edit: This post is pretty old and Elasticsearch/Logstash/Kibana have evolved a lot since it was written. That’s quite a title. I work with an ONSSI Ocularis CS setup. Originally installed with NetDVMS, but upgraded to RC-C. This post builds upon a couple earlier posts http://www.ragingcomputer.com/2014/02/logstash-elasticsearch-kibana-for-windows-event-logs http://www.ragingcomputer.com/2014/02/sending-windows-event-logs-to-logstash-elasticsearch-kibana-with-nxlog What does all this mean? This heavily redacted screenshotContinue reading “Collecting ONSSI Ocularis CS RC-C Logs with nxlog / Logstash / Elasticsearch / Kibana3”
Tag Archives: nxlog
Sending Windows Event Logs to Logstash / Elasticsearch / Kibana with nxlog
Edit: This post is pretty old and Elasticsearch/Logstash/Kibana have evolved a lot since it was written. Part 3 of 4 – Part 1 – Part 2 – Part 4 This is a continuation of http://www.ragingcomputer.com/2014/02/logstash-elasticsearch-kibana-for-windows-event-logs Again, I took a lot of inspiration from http://sysxfit.com/blog/2013/07/18/logging-with-logstash-part-3/ The nxlog reference manual is surprisingly well written with excellent examples.Continue reading “Sending Windows Event Logs to Logstash / Elasticsearch / Kibana with nxlog”
Raging Computer 