Giter VIP home page Giter VIP logo

bshifter / axosyslog Goto Github PK

View Code? Open in Web Editor NEW

This project forked from axoflow/axosyslog

0.0 0.0 0.0 33.63 MB

AxoSyslog - a cloud-native distribution of syslog-ng by Axoflow

Home Page: https://axoflow.com

License: Other

Shell 1.66% Ruby 0.01% C++ 4.91% Python 8.12% Perl 0.10% C 75.87% Objective-C 0.29% Java 1.82% Awk 0.07% Makefile 2.78% Smarty 0.02% CMake 2.34% Yacc 0.59% Lex 0.24% M4 1.02% Dockerfile 0.13% Roff 0.04%

axosyslog's Introduction

Axoflow

AxoSyslog - the scalable security data processor

Discord Build Status Nightly Binary packages

AxoSyslog started as a syslog-ng [1] fork, branched right after syslog-ng v4.7.1 with the following focus:

  • cloud native (containers, helm charts, kubernetes integration),
  • security data tailored parsing and transformation (filterx, app-parser, app-transform, etc)
  • performance (eBPF, memory allocator, etc),

AxoSyslog (created by the original creators of syslog-ng [1]):

  • is a drop in replacement for syslog-ng [1],
  • keeps using the same license and development practices.

This repository contains the AxoSyslog source tree, container images, and Helm charts created and maintained by Axoflow.

[1] syslog-ng is a trademark of One Identity.

Quick-start

To start using AxoSyslog, you can use one of these deployment mechanisms:

  • pure containers (docker, podman)
  • Helm charts (Kubernetes)
  • packages (deb, rpm, etc)

Once the binaries are deployed, create a configuration file called /etc/syslog-ng/syslog-ng.conf, which will then be processed by the syslog-ng process.

A simple example is to ingest syslog traffic on tcp/514 and write it to a file:

@version: 4.8
@include "scl.conf"

log {
	source {
		system();
		network();
	};
	destination { file("/var/log/syslog"); };
};

You can find more examples in the Quickstart section of the documentation.

Container images

You can find the list of tagged versions at https://github.com/axoflow/axosyslog/pkgs/container/axosyslog.

To install the latest stable version, run:

docker pull ghcr.io/axoflow/axosyslog:latest

You can also use it as a base image in your Dockerfile:

FROM ghcr.io/axoflow/axosyslog:latest

If you want to test a development version, you can use the nightly builds:

docker pull ghcr.io/axoflow/axosyslog:nightly

Note: These named packages are automatically updated when a new AxoSyslog package is released. To install a specific version, run docker pull ghcr.io/axoflow/axosyslog:<version-number>, for example:

docker pull ghcr.io/axoflow/axosyslog:4.8.0

The container images contain a default configuration file which you probably want to customize. Read more about using these images directly via podman/docker

Our images are available for the following architectures:

  • amd64
  • arm/v7
  • arm64

Helm Charts

AxoSyslog provides Helm charts to deploy on Kubernetes.

Helm must be installed to use the charts. Please refer to Helm's documentation to get started.

Once Helm has been set up correctly, add the repo as follows:

helm repo add axosyslog https://axoflow.github.io/axosyslog

If you had already added this repo earlier, run helm repo update to retrieve the latest versions of the packages. You can then run helm search repo axosyslog to see the charts.

To install the axosyslog chart:

helm install my-axosyslog axosyslog/axosyslog

To uninstall the chart:

helm delete my-axosyslog

Helm charts would use the latest images by default, but you can customize that via the values file. For details, see Install AxoSyslog with Helm.

DEB packages

You can install AxoSyslog on your Debian-based system from Axoflow's APT repository. AxoSyslog is a drop in replacement for the syslog-ng Debian package, all the binaries and configuration files are stored at the same place on your system.

The following x86-64 distros are supported:

Distro sources.list component
Debian 12 debian-bookworm
Debian 11 debian-bullseye
Debian Unstable debian-sid
Debian Testing debian-testing
Ubuntu 24.04 ubuntu-noble
Ubuntu 23.10 ubuntu-mantic
Ubuntu 23.04 ubuntu-lunar
Ubuntu 22.04 ubuntu-jammy
Ubuntu 20.04 ubuntu-focal

To add the APT repo (e.g. Ubuntu 24.04):

wget -qO - https://pkg.axoflow.io/axoflow-code-signing-pub.asc | gpg --dearmor > /usr/share/keyrings/axoflow-code-signing-pub.gpg
echo "deb [signed-by=/usr/share/keyrings/axoflow-code-signing-pub.gpg] https://pkg.axoflow.io/apt stable ubuntu-noble" | tee --append /etc/apt/sources.list.d/axoflow.list

apt update

Nightly builds are also available:

echo "deb [signed-by=/usr/share/keyrings/axoflow-code-signing-pub.gpg] https://pkg.axoflow.io/apt nightly ubuntu-noble" | tee --append /etc/apt/sources.list.d/axoflow.list

To install AxoSyslog:

apt install axosyslog

Documentation

You can find comprehensive documentation for AxoSyslog on the Axoflow website.

Difference from syslog-ng

The original founder of syslog-ng forked off AxoSyslog from the original syslog-ng after the 4.7.1 release. AxoSyslog is a drop in replacement, retaining the original license, release schedule and processes.

Contact and support

In case you need help or want to contact us, open a GitHub issue, or come chat with us in the syslog-ng channel of the Axoflow Discord server.

Contribution

If you have fixed a bug or would like to contribute your improvements to AxoSyslog, open a pull request. We truly appreciate your help.

About Axoflow

The Axoflow founder team has a long history and hands-on experience about observability, log management, and how to apply these technologies in the enterprise security context. We also happen to be the original creators of wide-spread open source technologies in this area, like syslog-ng and the Logging operator for Kubernetes.

To learn more about our products and our open-source projects, visit the Axoflow blog, or subscribe to the Axoflow newsletter.

axosyslog's People

Contributors

bazsi avatar mranno avatar alltilla avatar lbudai avatar furiel avatar algernon avatar szemere avatar juhaszviktor avatar bkil-syslogng avatar overorion avatar hofione avatar bshifter avatar jszigetvari avatar ihrwein avatar nbsd avatar presidento avatar smortex avatar mehul-m-prajapati avatar mochrul avatar tonteg avatar github-actions[bot] avatar faxm0dem avatar litterbear avatar therandomstring avatar czanik avatar ibmibmibm avatar fekete-robert avatar nobles avatar littlefish33 avatar gdani avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.