Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
abdulrahman
New Contributor

nginx logs

Hello dears

I have many web servers running on Centos 7, I have nginx logs located in var/log/nginx , (access.log, error.log , etc,.), I want these logs to be sent to Fortisiem, how I can achieve this?

abd
abd
3 REPLIES 3
AEK
Honored Contributor

Hi Abdul

On CentOS 7 you use rsyslog, which is supported by FortiSIEM.

Just edit your /etc/rsyslog.conf to redirect nginx logs to FSM IP, then restart your syslog service.

AEK
AEK
abdulrahman

Hello AEK

Thank you for your reply, I already configured the rsyslog.conf as *.* @ (Fortisiem IP) 514

, I think * means all logs, is there any further configuration to do?

abd
abd
AEK
Honored Contributor

Hi Abdul

That's right, *.*  @x.x.x.x means all facilities and all priorities are sent to x.x.x.x.

No need to add ":514" since it is the default syslog port.

Nothing to do from OS side except to restart rsyslog service.

AEK
AEK
Labels
Top Kudoed Authors