// , Send SystemD Logs to a separate file

Question

// , Send SystemD Logs to a separate file

v6 opened this issue 6 years ago · 2 comments

// , Currently both Vault and Consul logs are going into /var/log/messages, but for easier external consumption, either by the ELK stack or by Splunk, it would be more convenient if they had separate vault.log and consul.log files.

Answer 1 · 2018-12-03T21:50:49.000Z

// , @mrodriguezio, would you please have a go at this one?

Answer 2 · 2018-12-04T00:12:54.000Z

// , Something like this might work:

ExecStart=/bin/bash -c '/usr/bin/journalctl --no-tail -f -o json > /var/journald_file'

Splunk and others can't handle the binary format of SystemD journals:

https://www.freedesktop.org/wiki/Software/systemd/journal-files/