Systemd-journald in systemd service manager has become a common approach to log management in Linux, as well. Because...
systemd-journald is a part of the system, it can capture log messages generated by anything systemd-related, such as remote servers. Systemd-journald doesn't have as many features as rsyslog, however.
How administrators gather information from log files depends on how the logs are configured. Under a standard configuration, every server logs to its own local /var/log directory, and the administrator will have a hard time figuring out what is happening where.
For smart log management in Linux, administrators should configure
Open source alternatives
There are also open source log monitoring systems. Logwatch analyzes log files for a specified time period and works within different parameters to generate a report.
Logcheck scans system logs for specific information an administrator wants
Admins looking for a complete system with a web-based monitoring option should also consider Graylog2. It enables administrators to collect, index and analyze log data that comes from any source and presents the results in a dashboard where it's easy to see what is happening where.
Dig Deeper on Linux servers
Related Q&A from Sander van Vugt
Implementing RHEL in the cloud isn't exactly the same as using cloud technology in the data center, especially when addressing swap and support ... Continue Reading
As it is with other cloud platforms, autoscaling in OpenStack is important to meet changing workload demands. Here's how to enable that process with ... Continue Reading
Ceph object storage performance is largely based on network speed, but journal disks and the right file system for object storage devices also play a... Continue Reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.