...
The full tag must have at least 3 levels. The first two are fixed as web.nginx
. The third level identifies the type of events sent and the rest of them indicate the event subtypes.
Product / Service |
---|
Tags | Data |
---|
tables | |
---|---|
NGINX web server |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
For more information, read more about Devo tags.
Expand | ||||||||
---|---|---|---|---|---|---|---|---|
| ||||||||
The format and location of the different access logs are defined using the
For more information about NGINX logging, see the NGINX documentation.
|
How is the data sent to Devo?
We recommend that you use the rsyslog configuration files on the host machine to send log events to a Devo endpoint. See the Monitoring files using rsyslog and Secure sending using rsyslog articles for details about editing the rsyslog configuration file.
Note |
---|
Remember to restart rsyslog after editing the configuration file. |
Table structure
These are the fields displayed in these tables:
Anchor | ||||
---|---|---|---|---|
|
Field | Type | Source field name | Extra fields |
---|---|---|---|
eventdate |
|
| |
environment |
| venv | |
site |
| vsite | |
clon |
| vclon | |
serverdate |
|
| |
srcIp |
|
| |
user |
|
| |
method |
|
| |
url |
|
| |
protocol |
|
| |
statusCode |
|
| |
responseLength |
|
| |
referer |
|
| |
userAgent |
|
| |
srcIdentd |
|
| |
rawMessage |
|
| ✓ |
hostchain |
|
| ✓ |
hostname |
|
| |
tag |
|
| ✓ |
Anchor | ||||
---|---|---|---|---|
|
Field | Type | Source field name | Extra fields |
---|---|---|---|
eventdate |
|
| |
environment |
| venv | |
site |
| vsite | |
clon |
| vclon | |
rawMessage |
|
| ✓ |
serverdate |
|
| |
srcIp |
|
| |
serverName |
|
| |
serverPort |
|
| |
user |
|
| |
method |
|
| |
rawUrl |
|
| |
protocol |
|
| |
statusCode |
|
| |
url |
|
| |
referer |
|
| |
userAgent |
|
| |
connectionState |
|
| |
responseTime |
|
| |
upstreamResponseTime |
|
| |
requestLength |
|
| |
responseLength |
|
| |
bodyLength |
|
| |
requestContentType |
|
| |
responseContentType |
|
| |
gzipRatio |
|
| |
cookies |
|
| |
hostchain |
|
| ✓ |
tag |
|
| ✓ |
Anchor | ||||
---|---|---|---|---|
|
Field | Type | Field Transformation | Source field name | Extra fields | ||
---|---|---|---|---|---|---|
eventdate |
|
|
| |||
environment |
|
| venv | |||
site |
|
| vsite | |||
clon |
|
| vclon | |||
serverdate |
|
|
| |||
srcIp |
|
|
| |||
clientIp |
|
| pc as xForwardedFor | |||
serverName |
|
|
| |||
serverPort |
|
|
| |||
user |
|
|
| |||
method |
|
|
| |||
rawUrl |
|
|
| |||
protocol |
|
|
| |||
statusCode |
|
|
| |||
url |
|
|
| |||
referer |
|
|
| |||
userAgent |
|
|
| |||
connectionState |
|
|
| |||
xForwardedFor |
|
|
| |||
responseTime |
|
|
| |||
upstreamResponseTime |
|
|
| |||
requestLength |
|
|
| |||
responseLength |
|
|
| |||
bodyLength |
|
|
| |||
requestContentType |
|
|
| |||
responseContentType |
|
|
| |||
gzipRatio |
|
|
| |||
cookies |
|
|
| |||
rawMessage |
|
|
| ✓ | ||
hostchain |
|
|
| ✓ | ||
tag |
|
|
| ✓ |
Anchor | ||||
---|---|---|---|---|
|
Field | Type | Field Transformation | Source field name | Extra fields | ||
---|---|---|---|---|---|---|
eventdate |
|
|
| |||
environment |
|
| venv | |||
site |
|
| vsite | |||
clon |
|
| vclon | |||
serverdate |
|
|
| |||
srcIp |
|
|
| |||
proxyChain |
|
|
| |||
clientIp |
|
| proxyChain pc as | |||
user |
|
|
| |||
method |
|
|
| |||
url |
|
|
| |||
protocol |
|
|
| |||
statusCode |
|
|
| |||
responseLength |
|
|
| |||
referer |
|
|
| |||
userAgent |
|
|
| |||
srcIdentd |
|
|
| |||
rawMessage |
|
|
| ✓ | ||
hostchain |
|
|
| ✓ | ||
tag |
|
|
| ✓ |
Anchor | ||||
---|---|---|---|---|
|
Field | Type | Source field name | Extra fields |
---|---|---|---|
eventdate |
|
| |
environment |
| venv | |
site |
| vsite | |
clon |
| vclon | |
serverdate |
|
| |
severity |
|
| |
pid |
|
| |
tid |
|
| |
cid |
|
| |
message |
|
| |
rawMessage |
|
| ✓ |
hostchain |
|
| ✓ |
tag |
|
| ✓ |
How is the data sent to Devo
We recommend that you use the rsyslog configuration files on the host machine to send log events to a Devo endpoint. See the Monitoring files using rsyslog and Secure sending using rsyslog articles for details about editing the rsyslog configuration file.
...