Quantcast
Channel: THWACK: Popular Discussions - Kiwi Syslog
Viewing all 15803 articles
Browse latest View live

Kiwi Syslog not receiving SNMP Traps

September 10, 2015, 6:14 am
$
0
0

Hi all.

 

I have just installed Kiwi Syslog Server 9.5 on a test machine to evaluate its suitability for a project I'm working on. It's currently still running in 14-day Evaluation mode.

 

We can't seem to get it to receive SNMP traps at all. No matter what we do, netstat shows nothing listening on UDP port 162. SNMPv1 traps are being sent to the server, and we can see them in Wireshark arriving at the server, but Kiwi isn't listening for them.

 

In desparation, we tried enabling the Windows SNMP Trap service (although we understand this isn't required?) and this 'absorbed' the traps, but nothing appeared in Kiwi.

 

The test machine is running Windows 7 (32-bit) with the Windows Firewall switched off.

 

Should the 14-day Evaluation be able to receive SNMP traps?

 

Thanks in advance for any advice!

Search

How to create filter in kiwi syslog web access to filter only windows logon events

April 21, 2015, 9:23 pm
$
0
0

Dear All,

I want to create filter in syslog server to view the windows logon and logoff (event logs).

 

Please help me to create the filter.

Klog? - Sending syslogs from scripts, batch files, etc

October 20, 2010, 10:05 am
$
0
0

We are looking into sending messages to Kiwi Syslog from a few login scripts.  I have seen some references to a command line utility named klog.exe as well as some DLLs (and other VB libraries).  However, I cannot find a way to download them or find them on the Kiwi Syslog server.  Are these tools still available?  If so, where?  If not, why?

 

thank you.

How to Migrate Kiwi Syslog Server

January 14, 2015, 10:55 am
$
0
0

There are 3 things that you need to consider when migrating Kiwi Syslog Server:


  1. Configuration - to back them up, simply open the Kiwi Syslog Server Manager and click "File -> Export Settings to INI" .
  2. Logs - Manually copy Syslog messages log files. Under Setup, look for all Log to file - action and take note of the path and file name.
  3. License - Deactivate the license from the old server using License Manager Tool first so that you can transfer the license to the new server. Please take note that Activation Key will be different once the license is deactivated. You can refer to the following video for more detail information:

Kiwi Log Viewer Suggestion

April 18, 2019, 8:45 am
$
0
0

I apologize if this is the wrong forum for the log viewer.

 

Is it possible to add a checkbox for an audible alert to the highlighting options so we can be alerted when the highlighter matches a target phrase?

 

Thanks,

Mike

Syslog manager not receiving events forwarded

May 23, 2017, 2:43 am
$
0
0

Hi.

 

I am trying to get Event Log Forwarder and Syslog Service Manager to work together.

I have the Log Forwarder running on a domain controller and the SSM on the logging server.

I have the syslog generator tested on the domain controller and it can generate messages in the SSM, but when I run the Event Log Forwarder, then I am not getting any events through. Not even test messages are getting through. I have set up subscriptions for error 4776 in the security tab for both Audit success and failure. I have added the syslog server in that tab, but still no luck. A reinstall of the programs didnt help.

 

Can anyone point me in the right direction?

Kiwi Syslog Server Tool - Free to use or just a trial version for 14 days?

December 19, 2017, 5:46 pm
$
0
0

I would like to get a verification for the stated tool, is it a freeware tool that I can use with a limitation features or is just 14 days trial version tool?

log forwarder error

February 23, 2018, 6:15 am
$
0
0

i installed log forwarder 2.1.0 on my windows server 2008. i set my kiwi syslog server, i configured subscription for sending system logs from my server. when i click to test button, the test is ok, but in event viewer i receive in log solariwinds.net i receive message

 

Unable to setup Windows Event Log subscribers. Subscribe failed with error 15001, The specified query is invalid.

 

also, my kiwisyslogserver does not receives messages. where is problem

Search

Kiwi Syslogd_Service.exe stopping unexpectantly

April 19, 2018, 1:06 am
$
0
0

we are experiencing the below events:

 

Event ID: 1000

Faulting application name: Syslogd_Service.exe, version: 9.6.3.3, time stamp: 0x5a0da76b

Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000

Exception code: 0xc0000096

Fault offset: 0x065685f4

Faulting process id: 0x%9

Faulting application start time: 0x%10

Faulting application path: %11

Faulting module path: %12

Report Id: %13

Faulting package full name: %14

Faulting package-relative application ID: %15

 

Event ID: 1026

Application: Syslogd_Service.exe

Framework Version: v4.0.30319

Description: The process was terminated due to an unhandled exception.

Exception Info: exception code c0000096, exception address 065685F4

Stack:

 

the service can be manually started successfully, however it stops with the above errors on a seemingly random basis (at least once a day).

 

EDIT 17:38 19/04/18 - I discovered that the service fails when a scheduled job (to archive) the syslog files is activated - but not when manually ran.

Kiwi SyslogServer 9.6.6.1 is failing to stay up with TCP traffic on port 514

April 8, 2019, 11:55 pm
$
0
0

Hello Experts,

 

We have two instances of Kiwi 9.6.6.1(enterprise licensed) which are failing to stay up with TCP traffic over port 514. It fails with an unhandled exception "System.IndexOutofRangeException". If I try to send the normal burst messages using SyslogGen it works but for actual traffic it crashes. Tried to bind IP and disable UDP as well without luck.

 

We have DNS lookup disabled to achieve necessary speed. Our environment is Windows 2016.

 

Any suggestions would be of great help.

 

Thanks

Pradeep

messages overflowed and oversize message

February 14, 2017, 2:07 pm
$
0
0

Recently I was poking around in setup on Kiwi Syslog and noticed a couple of alerts that were not turned on.  We have had Syslog for many years and I had left them off because it was a default setting. So now they are on and we are getting alerts about "# messages overflowed the message queue this hour."

 

I have several questions:

1.     If messages are overflowing, are they lost? In other words, these are messages that will not show up in the logs?

2.     I found information on how to increase the buffer size at this link: Kiwi Syslog Daemon. It refers to changing a registry key. But, I can't find the registry key to edit. Any ideas on how to get the reg keys in there or why I don't have them?

3.     In the statistics in the alert, there are counts of Errors - Oversize message. Could this be causing the messages to overflow? Is there a quick and easy way to figure out which device is sending the oversize messages?

4.     Is this why it is turned off by default? I'm half joking here about all of my questions.

 

Thanks,

castlemve

Parsing logs from Windows Event logs

March 24, 2015, 2:33 pm
$
0
0

Good day,

 

How can we get windows event logs to be stored in the database with there specific fields

 

  1. Event ID
  2. DATE and TIME
  3. EVENT DESCRIPTION
  4. AUDIT TYPE
  5. SERVER NAME
  6. ACCOUNT NAME
  7. DOMAIN NAME
  8. FAILURE CODE
  9. FAILURE REASON
  10. LOGON TYPE

  

Currently the information is stored in one (1) field. Is there a parse script or way to split the information as seen above and store in the database.

 

 

My project team is urgently awaiting a response to complete an overdue task. Can someone kindly provide some assistance, guidance or information.

 

Thanks in advance.

 

George

 

How to delete old records from Kiwi Syslog Web Access?

September 4, 2009, 8:18 am
$
0
0

How to delete records from the Kiwi Syslog Web Access?

Thanks.

Error Number: 6

July 1, 2016, 6:01 pm
$
0
0

Error Number: 6

Description: 溢出

Module Name: RC4Encryption.bas

Procedure Name: KiwiEnCryptLots

Line Number: 440

 

when setting syslog log to MS SQL server,then the program breakdown with the error message above.

Kiwi Syslog and Solarwind Event Log Forwarder Issuses

August 16, 2018, 8:42 am
$
0
0

I can't seem to get the Solarwind Event Log Forwarder to send any information to our Kiwi Syslog.  This is a new setup on a closed system with no access to the Internet.  The machines are running Windows 10 v1703 and Server 2012 R2. 

Search

Need to have log reporting from KIWI SYslog

December 7, 2018, 4:11 am
$
0
0

Hi All,

 

I need to configure logs reporting in my KIWI syslog application through my SMTP server as attachments into my email.

 

Please let me know , how to proceed.

 

 

Thanks

Srikant

Procurve switches not sending syslog messages in KIWI syslog

July 25, 2013, 6:58 am
$
0
0

Hi all,

 

New here, searched for discussions but found no entry on procurve switch(es).

The Procurve switches will not send any syslog messages (wiresharked the server)

Turned on logging on the switch: logging 'ip-address'

 

show debug

 

Debug Logging

  Source IP Selection: Outgoing Interface
  Destination:
   Logging --
     'ip-address' Kiwi Syslog server

       Protocol = UDP
       Port     = 514
     Facility = user
     Severity = info
     System Module = all-pass
     Priority Desc =

 

tried facility 'syslog' still nothing.

 

Only the Procurve switches will not send any syslog messages.

Other devices such as Cisco ASA's work fine.

 

Anyone ideas to solve this?

 

TIA Jaap

Log Forwarder for Windows default syslog facility ?

June 23, 2016, 4:23 pm
$
0
0

So I tried searching to see if this question was asked before but nothing came up. (at least in regards to this question)

I am installing this on our 2012R2 windows servers so  they can forward logs to kiwi.

for the default syslog facility setting, which should I pick if I want to forward say applications, security and system?

Whatever I think closely matches that?  The docs don't discuss this in any real detail other than to mention network devices (which I already knew) and unix.

Thanks in advance.

Kiwi Syslog - Read text file/csv

October 2, 2016, 10:32 pm
$
0
0

Hi all,

 

Is there a way that I am able to have Kiwi Syslog read from or import from a text file or CSV file that may be generated by a program that does not support Syslog?

 

Thanks.

Event Log Forwarder - Where is the Audit Failure Type?

March 18, 2015, 5:40 pm
$
0
0

Hi There,

 

I'm trialing Kiwi Syslog and I'm having trouble with the Log Forwarder and Security Event Log.  When I click on the Security Log I don't see Audit Success or Audit Failure as an event type.  It just has Error, Warning and Information.  If I manually edit the CFG file and add <int>16</int> it works, but then it gets overwritten if I make a change.  Am I doing something wrong?  How can I see Audit Failure as an Event Type?

 

Thanks,

Viewing all 15803 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>