This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Log in to ask a question

zabbix application logs

Posted on 12-14-2023 10:16 PM
muniraja1
Bronze 1
Bronze 1
Reply posted on --/--/---- --:-- AM

Hi SIEM Team,

Could you please us that we are unable to Collete the Zabbix application logs? The Zabbix application is running on Linux Centos 8 .6 . The server has been hosted on On-premises.

Solved Solved
0 2 255
Topic Labels
Jump to Solution
0 Likes
1 ACCEPTED SOLUTION

Posted on --/--/---- --:-- AM
deeshu
Bronze 4
Bronze 4
Reply posted on --/--/---- --:-- AM

Chronicle has four options for data ingestion. Where your Zabbix logs are stored? Does it support syslog forwarding or storing the log files in a central server or end number of endpoints? If the log files are in *nix then you can leverage rsylog to foward it to Chronicle Forwarder. 

BTW. Chronicle doesn't have a parser for Zabbix so you'll have to write a custom parser for it.

View solution in original post

Jump to Solution
0 Likes
2 REPLIES 2

Posted on --/--/---- --:-- AM
deeshu
Bronze 4
Bronze 4
Reply posted on --/--/---- --:-- AM

Chronicle has four options for data ingestion. Where your Zabbix logs are stored? Does it support syslog forwarding or storing the log files in a central server or end number of endpoints? If the log files are in *nix then you can leverage rsylog to foward it to Chronicle Forwarder. 

BTW. Chronicle doesn't have a parser for Zabbix so you'll have to write a custom parser for it.

Jump to Solution
0 Likes

Posted on --/--/---- --:-- AM
muniraja1
Bronze 1
Bronze 1
Reply posted on --/--/---- --:-- AM

Thanks for the information 

Jump to Solution
0 Likes