Pay attention to that last line, it is where you need to define the IP address of your syslog server and port (I use GrayLog). Once I set up the input in graylog, all of my logs are flowing from Home Assistant to GrayLog easy peasy. Let me know if you have questions.
I sort of expected it would be natural to have remote syslog ability. Iām disappointed.
Would it be hard to create āsomething resembling sending lines to remote syslogā to launch up node-red and make it sent ārelevant dataā to IP:514 ?
At least node red gets all the operational data and can send it to IP:port, building the filters and formatters should be possible.
As I write this, my remote syslog server is logging all the events and all the data from my HA, but there is just too much noise.
Mar 8 15:13:33 192.168.X.YY {"event_type" 0d user notice {"event_type":"state_changed","entity_id":"sensor.memory_free","event":{"entity_id":"sensor.memory_free","old_state":{"entity_id":"sensor.memory_free","state":"112.0","attributes":{"state_class":"measurement","unit_of_measurement":"MiB","icon":"mdi:memory","friendly_name":"Memory free"},"last_changed":"2022-03-08T13:13:18.527059+00:00","last_updated":"2022-03-08T13:13:18.527059+00:00","context":{"id":"217e078b7e4050142bd0db8e2e44e46e","parent_id":null,"user_id":null}},"new_state":{"entity_id":"sensor.memory_free","state":"112.2","attributes":{"state_class":"measurement","unit_of_measurement":"MiB","icon":"mdi:memory","friendly_name":"Memory free"},"last_changed":"2022-03-08T13:13:33.528685+00:00","last_updated":"2022-03-08T13:13:33.528685+00:00","context":{"id":"da4d10da48c9fad17502dbd3420ef4a8","parent_id":null,"user_id":null}}},"origin":"LOCAL","time_fired":"2022-03-08T13:13:33.528685+00:00","context":{"id":"da4d10da48c9fad17502dbd3420ef4a8","parent_id":null,"user_id":null}}
I just created a Logspout add-on to be able to send logs to a remote log management system on HASS.io / Hassos. Itās probably less ideal than using something like rsyslog or a specific Docker log driver but it seems to work quite well. Feel free to try it out. Feedback is much appreciated.
Just here to upvote this and share our requirements and use case
We need to send logs via syslog to a specified remote server with a configurable destination IP, Port, and ideally, protocol (UDP/TCP). Syslog Facility and Severity parameters should be supported.
Iām in a business context in the IT department and we want to use Home Assistant and Konnected to create entry alarms which leverage installed sensors. The business policy requires that everything log to our remote centralized seim so we can coordinate physical and digital events.
Just an FYI/Tip, While I havenāt had a chance to figure out a nice/permanent solution, I am getting logs off my HaOS instances in realtime by using
ssh -p 22222 hassio@hassvm journalctl -f | ....
For this to work, you need ssh access to the host OS which is described in the Hass developer docs under troubleshooting. (Ssh access needs to be enabled by installing an authorized_keys file. There is a mechanism to do this with a USB thumb drive. Iāve also figured out an alternate method if you have console access to the machine/VM.)
This lets me see logging output from the HaOS kernel and user level, as well as the running containers like homeassistant and supervisor.
Unfortunately, when I looked the host OS didnāt have systemd-journal-remote or journald-remote to allow forwarding logs.
Iām logged on via ssh, but donāt have journalctl command? (I have named-journalprint ?)
can you post more details how this could be running on a synology server to grab the logs and put in the syslog server, any idea?
tx !
@migube - Are you running the whole Home Assistant OS in a VM on Synology, or are you running just the containers?
What I described applies to HaOS with developer ssh access enabled for the HaOS host operating system on port 22222. This is NOT the ssh addon that runs in a container. If you are coming up with named-journalprint when trying to run journalctl it sounds like you are typing that into the SSH addonās zsh.
