Windows Log Forwarding

NXlog (syslog) for Windows

Purpose: The following instructions were created as a rudimentary guide to help BSD departments configure nxlog for Windows servers.

Scope: These instructions are intended to be used by BSD Departmental systems and servers. Depending on your servers’ current configuration, these instructions may not work properly. In those cases, please contact your local IT administrator for further support.

Configuration

  1. To forward logs from a Windows Server machine to our syslog server, you need to download and install nxlog.
  2. Click here to download nxlog.
  3. Open the downloaded installer and follow the instructions. By default, it should be installed in ‘C:\Program Files (x86)\nxlog’
  4. Download this config file: nxlog.conf
  5. Copy the downloaded config file to your local server’s ‘C:\Program Files (x86)\nxlog\conf’ directory.
  6. After copying the nxlog.conf to its proper location, you must now restart the nxlog service.
  7. Click Start, click in the Start Search box, type services.msc, and then press Enter.
  8. When the services console opens, scroll down until you see the nxlog service.
  9. Right click the nxlog service and select Start from the drop-down menu.