摘要
对日志进行远程集中化管理是日志管理的有效手段.但由于日志格式不统一,传统上很难将大型网络中Windows系统上的各类日志远程采集到集中的日志服务器.介绍了Windows平台上常见系统日志的概况,以及一种新的支持多平台且功能强大的日志采集工具nxlog,它可以非常方便地部署到Windows系统上并以客户端代理或者服务器模式运行,以此提出了基于nxlog的日志远程采集系统方案.实际运行结果表明,该方案具有实用、高效的特点,可有效解决大型网络中Windows系统日志远程采集的问题.
The mode of remote centralized management is an effective means for log management. But,because of the different log formats,traditionally,it is difficult to gather the various logs on Windows system,and transmit them to remote log server in large-scale network. Firstly,the general situation of common system logs on Windows platform is introduced in this paper. Then,nxlog as a new kind of multi-platform supported and powerful log collection tool is recommend in detail,which can be very convenient to deploy on Windows system,and work as client-agent mode or log server mode. Finally,the scheme of nxlog-based log remote collection system is put forward. And the actual operation result shows that this solution is practical and efficient,which can effectively solve the remote log collection problem of Windows system in large-scale network.
出处
《河南科学》
2014年第2期189-194,共6页
Henan Science
基金
河南省科技攻关计划项目(122102310474)
驻马店市科技发展计划项目(11314)
关键词
网络安全
系统日志
日志采集
WINDOWS系统
nxlog
Syslog
network security
system log
log collection
nxlog
Syslog
Windows system
