Understand the Components#

WinSyslog is easiest to understand if you separate its main components by role.

Diagram showing the WinSyslog Service as the central component, configured by the Configuration Client, forwarding live events to Interactive Syslog Viewer, and writing logs to file or database for Adiscon LogAnalyzer.

WinSyslog consists of a background service, a configuration client, a live viewer, and an optional analysis component for stored logs.#

The four components#

  1. WinSyslog Service This is the main runtime component. It runs in the background as a Windows service, receives log data, processes it through rules, and stores or forwards the results.

  2. WinSyslog Configuration Client This is the administrative user interface. You use it to configure services, rulesets, filters, and actions. Changes are made in the Configuration Client and then applied to the WinSyslog service. It is also where you send a test syslog message from the Tools menu.

  3. Interactive Syslog Viewer This is the live-view component for interactive monitoring. It does not show data automatically by itself. WinSyslog must forward messages to it via a rule.

  4. Adiscon LogAnalyzer This is an optional analysis component for working with stored logs, especially in files or databases. It is for browsing and reviewing retained data, not for live message intake.

How they fit together#

  • The service does the actual receiving, processing, storing, and forwarding.

  • The configuration client defines what the service should do and is where configuration changes are applied before the service uses them.

  • The Interactive Syslog Viewer can display incoming messages live if the service forwards them there.

  • LogAnalyzer works on stored log data after the service has written it to a file or database.