Hi all
I need an open source solution to allow us to store logs generated by multiple routers, switches and windows servers and workstations.
The logs need to be searchable in the event of a compliance query.
Is this something logstash can do?
With regards to the windows logs, is there a windows component to pipe the event logs in to logstash?
Olly
Is this something logstash can do?
Yes, together with Elasticsearch and Kibana. Well, you could use Logstash alone and e.g. store the logs as flat files but things won't be very searchable.
With regards to the windows logs, is there a windows component to pipe the event logs in to logstash?
Yes, Winlogbeat.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.