环境: centos7
192.168.88.7 rsyslog
192.168.88.17 rsyslog mariadb
192.168.88.27 loganalyzer LAP
rsyslog客户端
yum install rsyslog-mysql -y
vim /etc/rsyslog.conf
#添加
$ModLoad ommysql
*.info;mail.none;cron.none :ommysql:192.168.88.17,Syslog,rsyslog,123456
scp /usr/share/doc/rsyslog-8.24.0/mysql-createDB.sql 192.168.88.17:/root/
systemctl restart rsyslog.service
mariadb数据库
yum install mariadb-server.x86_64 -y
systemctl enable --now mariadb.service
#导入库表授权
MariaDB [(none)]> source /root/mysql-createDB.sql
Query OK, 1 row affected (0.00 sec)
MariaDB [(none)]> grant all on Syslog.* to 'rsyslog'@'192.168.88.%' identified by '123456';
Query OK, 0 rows affected (0.00 sec)
loganalyzer
yum -y install httpd php php-mysqlnd php-gd
tar zxf loganalyzer-4.1.12.tar.gz
mv loganalyzer-4.1.12/src/ /var/www/html/log
systemctl start httpd
touch /var/www/html/log/config.php
chmod 666 /var/www/html/log/config.php
#安装