There is no "best" when it comes to something like Syslog. There is only "best fit for your requirements". In order to determine that, you'll have to figure out what your goals and requirements are. If you're just trying to do something basic and simple, like get logs from one machine to another, you should probably use what is available and supported by your vendor/distribution. For Debian/Ubuntu, you have Syslog-NG and RSyslog available. For Red Hat/CentOS, you have RSyslog as the default, and Syslog-NG available in EPEL. For other Operating Systems, you'll have to talk to your vendor or do some additional research. If you want to do more than basic log shipping, then you've got some research to do. You need to map out the problem you're trying to solve, and decide on the requirements to accomplish it. Basic syslog is pretty easy. Enterprise log management is a lot more complicated. You start throwing in log aggregation, retention requirements, reliability requirements, encryption, log search, monitoring and alerting, etc., and you've got yourself a project. There are multiple excellent Open Source solutions, but without knowing what you're trying to accomplish, it's difficult to recommend anything. -- Christopher P. Cashell EIT Platform Engineering E-Mail: cpcashell@west.com Infrastructure Monitoring, Management, and Automation Division EIT ~ Converging People and Technologies West Corporation -----Original Message----- From: NANOG [mailto:nanog-bounces@nanog.org] On Behalf Of Maximino Velazquez Sent: Monday, June 6, 2016 4:00 PM To: nanog@nanog.org Subject: syslog server Hi nanog community I need help !! What is the best syslog server (opensource)? Thanks for your help Regards. -- Max Velazquez |