The event forwarder feature of Log Insight is powerful for a variety of reasons (several covered in this post). When it comes to event forwarding over the syslog protocol (i.e. to a third-party destination), some people have commented on the prefix Log Insight adds to forwarder events. It turns out this is true for event […]
Log Insight has featured event forwarding since version 2.5. One thing missing was the ability to apply tags (i.e. metadata) to events forwarded over the syslog protocol. In version 3.6, this capability has been added. Read on to learn more!
Based on some recent Log Insight conversations, I realized there is some confusion around what the difference is between a Log Insight server and a Log Insight forwarder. In this post, I would like to clear up the confusion.
Now that I have talked about the new forwarding feature in Log Insight 2.5, I would like to discuss why you should consider using it if you are not already.
Log Insight has supported event forwarding since 3.0. Given the syslog RFC, it was common for Log Insight to add a prefix to log events it forwarded. An option exists in 4.6 to change this behavior. Read on to learn more!
I have covered Log Insight reference architectures in the past, but I have received a few inquiries about large Log Insight deployments. In this post, I will cover a variety of different large Log Insight deployments and the reference architecture information you need to know. Read on to learn more!
From time to time, I hear about the desire to configure two separate Log Insight instances to forward to one another without creating a loop. In this post, I will discuss the reasons for this desired state, the best practice to achieve this desired state and some alternatives to consider. Read on to learn more!
I have covered Log Insight event forwarding in the past, but wanted to discuss a potential gotcha when leveraging filters that contain the backslash character. Read on to learn more!
Many enhancements have been made to system notifications in Log Insight 4.0. Read on to learn more!
One question I get asked from time to time is why Log Insight has a syslog drop system notification, but it does not have an API drop system notification. In this post, I will explain the difference. Read on to learn more!