Hi, I am trying to setup a centralized environment with syslog and use an agent, instead of using Logstash.
Reading the Elastic site, the preferred method seems to be to use an agent on every host instead.
I have searched the forum, but haven't quite found if syslog and an agent can work. Is this possible? Any guidance you can provide is appreciated.
Hi @michael005, You can use system integration from Elastic agent to collect syslog. For step by step guide please refer this doc.
Thanks!
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.