Request trial
Request Trial

NXLog Docs

agent-based log collection

What is agent-based log collection?

Description

Agent-based log collection is a log collection mode where an agent is installed on each device to collect, parse, and forward logs to a central log collector. The agent can also convert log records into a different format before forwarding them.

In the world of NXLog

With agent-based log collection, NXLog runs as an agent on the system that generates the logs. It collects the log data and sends it to another NXLog instance over the network, or any other destination accepting the data. It supports platform-specific sources such as the Windows Event Log, Linux system logs, Apple macOS logs, and syslog, to name a few.

Although agent-based log collection has many advantages, there are use cases where using agents is not feasible. In such scenarios, you need to look at agentless log collection.

Known as

agent-based log monitoring, agent-based log reporting, agent-based log collection solution, agent-based log management, local log collection

Related

Log processing modes

A   B   C   D   E   F   G   H   I   J   K   L   M   N   O   P   R   S   T   U   V   W   X   Z

A

agent

agent-based log collection

agentless log collection

audit log

B

bandwidth

C

CEF (Common Event Format)

CSV (Comma-separated Values)

D

data source

DNS logging

E

endpoint security

EPS (Events Per Second)

ETW (Event Tracing for Windows)

event correlation

F

failover

G

GELF (Graylog Extended Log Format)

H

High Availability (HA)

I

ICMP (Internet Control Message Protocol)

IDS (Intrusion Detection System)

J

JSON (JavaScript Object Notation)

K

kernel log

KVP (Key-Value Pair)

L

LEEF (Log Event Extended Format)

log centralization

log normalization

log parsing

M

MSSP (Managed Security Service Provider)

multi-line logs

N

NetFlow

O

open source

P

pattern

PCI-DSS (Payment Card Industry Data Security Standard)

protocol

R

Raijin database

Remote Access Server Role

S

SCCM (System Center Configuration Manager)

SEM (Security Event Management)

SIM (Security Information Management)

SIEM (Security Information and Event Management)

SNMP (Simple Network Management Protocol)

SOC (Security Operations Center)

structured logging

syslog

T

TCP (Transmission Control Protocol)

TLS (Transport Layer Security)/SSL (Secure Sockets Layer)

U

UEBA (User and Entity Behavior Analytics)

UDP (User Datagram Protocol)

V

vendor-agnostic

W

W3C Extended Log File Format

WEC (Windows Event Collector)

WEF (Windows Event Forwarding)

Windows Event ID

WMI (Windows Management Instrumentation)

X

XPath

Z

ZeroMQ

Subscribe to our newsletter to get the latest updates, news, and products releases.

© Copyright 2024 NXLog Ltd.

PRIVACY POLICY GENERAL TERMS OF BUSINESS