Gorilla Party Rocking your logs like an open-source mogul.
Graylog2‘s moto should be LMFAO (logging my freaking apps off).
Graylog2 is lovely little Splunk-like server that collects your logs and provides a nice interface for searching and analyzing them.
From the site
Graylog2 is an open source log management solution that stores your logs in ElasticSearch. It consists of a server written in Java that accepts your syslog messages via TCP, UDP or AMQP and stores it in the database. The second part is a web interface that allows you to manage the log messages from your web browser.
They have lovely screen shots here.
The only problem with it is it has quite a few moving parts that need to be installed that are not traditionally easy to get going on CentOS.
So, here is my guide.
So far, I’ve shown two different ways (from source or RPM) of getting Scribe installed on your CentOS / RHEL 5 server and soon I’ll write more on configuration.
For now let’s just get it running with our JVM-based app. In this scenario we’re going to set it up to log a Cassandra instance to a scribe instance on the same server, which is setup to log to a buffer store locally if the remote scribe master should become unavailable.
So we’ll assume you’ve got git installed (you can get it from EPEL), you have log4j properly installed in your JVM-based application and you have local and remote scribe instances setup.
Here is the config (based on the example1 & 2 configs that come with scribe) for the central server: