This is a Powershell Module for downloading, installing, and configuring Fluentd via the .msi packages provided by Treasure Data Inc.
This repo consists of 8 modules to download, install, configure, and manage Fluentd:
- Disable-Fluentd
- Enable-Fluentd
- Get-FluentdStatus
- Install-Fluentd
- Restart-Fluentd
- Set-FluentdConfig
- Uninstall-Fluentd
- Use-Fluentd
In order to properly run the Install-Fluentd module, Powershell 5.1 must be installed. Now we can start can install the module through Powershell Gallery.
- In Powershell run this command to install the necessary modules
Install-Module -Name Use-Fluentd
- Import the module into your session
Import-Module Use-Fluentd
- Download the .msi from Treasure Data Inc. and configure with your server information.
Install-Fluentdwill take a variety of arguments that allow you to configure the service at install:
-Server The FQDN or IP of the fluentd server to forward the packets to.
-Port The port number of the server to specify (Defaults to 443)
-Tag The tag to forward the logs with. (defaults to winevt.raw)
-Version The version of td-agent to install. (Defaults to 4.0.1)
This is just an example
Install-Fluentd -Server 192.168.1.40 -Servername fluentd-02 -Tag "it.winevt.raw" -Port 7777
After installing using Install-Fluentd, the function will automatically enable and start the fluentd service.
When Install-Fluentd runs, it uses a gem install to update to the latest version of fluent-plugin-windows-eventlog. This allows us to default the widows_eventlog2 plugin to check the logs, which we've found to be more stable and efficient. If you wish to change your config, you can use Set-FluentdConfig, uses the same -Server -Port -Tag arguments as Install-Fluentd, to update your configuration. You'll need to restart the service for changes to take affect.
Or you can write your own td-agent.conf in place to use other plugins or filters. The config can be found here:
C:\opt\td-agent\etc\td-agent\td-agent.conf
Please note that using Set-FluentdConfig overwrites the config file.
If you no longer wish Fluentd to be on your machine simple use Uninstall-Fluentd and it will be completley removed from your computer. It removes the installed .msi file and cleans up any lingering configs from the default install location.
You can start or stop the Fluentd service at any time using the following functions:
Enable-FluentdorDisable-Fluentd
To see information about Fluentd's status and configuration, you can use:
Get-FluentdStatus
Here is a sample output from that command:
Fluentd Details:
Version: 4.0.1
Server: 192.168.1.40
Port: 7777
Tags: it.winevt.raw
State: Running
If you're interested in contributing to this project, we would be honored and happy to have your help. If this is your first project, and you're a little confused on how to get started, be sure to check out How to Contribute to Open Source for an overview of good habits, and the Github documentation on How to create a Pull Request for the technical bits.
It can be scary at first, but don't worry - you'll do fine.
Please submit all pull requests to the azusapacificuniversity/Use-Fluentd repository in the develop branch!
As you're working on bug-fixes or features, please break them out into their own feature branches and open the pull request against your feature branch. It makes it much easier to decipher down the road, as you open multiple pull requests over time, and makes it much easier for us to approve pull requests quickly.
Another request is that you do not change the current requirements to running this program. An example, is that you might create a new function to get data that is useful to your organization. Our request is that that function isn't required to run natively or is enabled by default, but rather is available to users if they configure their version for it.
A good commit message should describe what changed and why. Use-Fluentd hopes to use semantic commit messages to streamline the release process and easily generate changelogs between versions.
Before a pull request can be merged, it must have a pull request title with a semantic prefix.
Examples of commit messages with semantic prefixes:
Fixed #<issue number>: Fixes Get-FluentdStatus for newest version.
Added #<issue number>: Add Get-Config to view the current config.
Please reference the issue or feature request your PR is addressing. Github will automatically link your PR to the issue, which makes it easier to follow the bugfix/feature path in the future.
Whenever possible, please provide a clear summary of what your PR does, both from a technical perspective and from a functionality perspective.
When Contributing, please understand that after a change is submitted, the modules must be resubmitted to Powershell to change the official module, but please feel free to use it in your own builds once you feel confident it works