如何将weblogic服务器日志发送到graylog?
[英]How to send weblogic server logs to graylog?
问题描述
We are sending to applicatios logs to graylog with logback config. 
我们将使用logback配置发送到应用日志到graylog。 I want to send weblogic server logs to graylog. 我想将weblogic服务器日志发送到graylog。 How can i do that? 我怎样才能做到这一点?
Thanks 谢谢
2 个解决方案
解决方案1
1 已采纳 2017-02-09 20:39:42
I work with Oracle Commerce on Weblogic, and wanted to investigate using Graylog. 我在Weblogic上使用Oracle Commerce,并希望使用Graylog进行调查。 I was able to setup a test environment using the Graylog AMIs on AWS EC2. 我能够使用AWS EC2上的Graylog AMI设置测试环境。 I used the collector-sidecar on a redhat machine running Weblogic 12.1.3.0.0. 我在运行Weblogic 12.1.3.0.0的redhat机器上使用了收集器侧车。
If you follow the directions here: http://docs.graylog.org/en/2.2/pages/collector_sidecar.html it is really pretty simple to do. 如果您按照此处的指示进行操作: http : //docs.graylog.org/en/2.2/pages/collector_sidecar.html确实很简单。 It took me about two hours total (about 1 hour of which I spent trying to figure out why the servers couldn't talk on port 5400 - my EC2 security profile wasn't setup with that port open - duh). 我总共花了大约两个小时的时间(其中大约一小时是我花在试图弄清楚为什么服务器无法在5400端口上进行通信-我的EC2安全配置文件没有在该端口打开的情况下进行设置-duh)。
The things I found a bit confusing were in the terminology, input and output... these are in terms of the collector-sidecar, NOT the Graylog server, nor the Beats backend (I used filebeat specifically over NXlog). 我发现有些令人困惑的是术语,输入和输出……这些是关于收集器的,而不是Graylog服务器或Beats后端的(我是通过NXlog专门使用filebeat)。 So an input would be data coming INTO the collector-sidecar from your log file (and I just pointed it to the instance.out file from weblogic), and an output would be going from collector-sidecar TO your Graylog server. 因此,输入将是您的日志文件中的数据进入收集器sidecar(我只是将其指向来自weblogic的instance.out文件),而输出将数据从收集器sidecar传递至您的Graylog服务器。
解决方案2
1 2017-04-15 21:45:52
I would suggest you to go through this article which explains various ways for sending logs to graylog server. 我建议您仔细阅读本文 ,其中介绍了将日志发送到Graylog服务器的各种方法。 For weblogic, you would probably need to use collector sidecar to collect data and filebeat/nxlog in the client to send the logs to the graylog server. 对于weblogic,您可能需要使用收集器sidecar来收集客户端中的数据和filebeat / nxlog,以将日志发送到graylog服务器。 You can refer the mysql slow query log configuration in that article to get an idea. 您可以参考该文章中的mysql慢查询日志配置以了解一下。
You should also create grok patterns to create fields from the incoming log file. 您还应该创建grok模式,以根据传入的日志文件创建字段。 You can refer this site to get an idea on what grok pattern is needed for weblogic logs. 您可以参考该站点以了解Weblogic日志需要哪种grok模式。 Consider creating the grok patterns in the graylog web interface and then applying the same as part of extractors in the specific input 考虑在Graylog Web界面中创建grok模式,然后将其作为提取器的一部分应用于特定输入中
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.