Recording Windows System Events

[SG Pal <sg...@hotmail.com>]

Hello -
I am new to Apache Flume and I am trying to understand if I can collect and aggregate Windows Systems Events natively in Apache Flume?Thanks in advance for any pointers and sorry for such a basic question.
GP 		 	   		   		 	   		  

Re: Recording Windows System Events

["Bhaskar V. Karambelkar" <bh...@gmail.com>]

Hi GP,
There is tool called SNARE which converts windows events to syslog events
and can forward them to a syslog server (which can be your flume source).
http://www.intersectalliance.com/projects/BackLogNT/
It comes in an open source as well as an enterprise version.
I've played quite a bit with the open source version, and it performs quite
well.

Hope that helps
Bhaskar


On Tue, Nov 19, 2013 at 4:49 PM, SG Pal <sg...@hotmail.com> wrote:

> Hello -
>
> I am new to Apache Flume and I am trying to understand if I can collect
> and aggregate Windows Systems Events natively in Apache Flume?
> Thanks in advance for any pointers and sorry for such a basic question.
>
> GP
>

Re: Recording Windows System Events

[Roshan Naik <ro...@hortonworks.com>]

There is nothing out of the box for doing that. But you could write a
Windows System Events source and use it with flume.


On Tue, Nov 19, 2013 at 2:04 PM, Paul Chavez <
pchavez@verticalsearchworks.com> wrote:

> No, you would need to have some kind of script or application run to read
> the events and send them to flume. A script that is scheduled to run every
> 5 minutes and save the events since the last interval to a CSV file that is
> dropped into a directory for the spoolDir source to pick up, for example.
>
>
>
> *From:* SG Pal [mailto:sgpal@hotmail.com]
> *Sent:* Tuesday, November 19, 2013 1:50 PM
> *To:* user@flume.apache.org
> *Subject:* Recording Windows System Events
>
>
>
> Hello -
>
>
>
> I am new to Apache Flume and I am trying to understand if I can collect
> and aggregate Windows Systems Events natively in Apache Flume?
>
> Thanks in advance for any pointers and sorry for such a basic question.
>
>
>
> GP
>

-- 
CONFIDENTIALITY NOTICE
NOTICE: This message is intended for the use of the individual or entity to 
which it is addressed and may contain information that is confidential, 
privileged and exempt from disclosure under applicable law. If the reader 
of this message is not the intended recipient, you are hereby notified that 
any printing, copying, dissemination, distribution, disclosure or 
forwarding of this communication is strictly prohibited. If you have 
received this communication in error, please contact the sender immediately 
and delete it from your system. Thank You.

RE: Recording Windows System Events

[Paul Chavez <pc...@verticalsearchworks.com>]

No, you would need to have some kind of script or application run to read the events and send them to flume. A script that is scheduled to run every 5 minutes and save the events since the last interval to a CSV file that is dropped into a directory for the spoolDir source to pick up, for example.

From: SG Pal [mailto:sgpal@hotmail.com]
Sent: Tuesday, November 19, 2013 1:50 PM
To: user@flume.apache.org
Subject: Recording Windows System Events

Hello -

I am new to Apache Flume and I am trying to understand if I can collect and aggregate Windows Systems Events natively in Apache Flume?
Thanks in advance for any pointers and sorry for such a basic question.

GP