Small docker-compose to deploy 4 containers which will crate whole stack to collect and display syslog on port 514
- syslog-ng - listen on TCP/UDP 514 and normalise syslog. Logs are feed to promtail without local storage.
- promtail - get syslog stream from syslog-ng, extract fields and feed it to Loki.
- Loki - it is where magic happens. Stores logs on loki-storage volumes
- Grafana - front-end to display logs. Loki need to be added as data source. Loki URL
https://loki:3100
docker-compose build
docker-compose up -d