Guys, looking to do two things with my clusters:
- Track all changes made by admins
- Report on config drift between systems i.e. clusters that should have some exact config elements as another cluster
Item 1: I assume I can simply syslog eveything out to ELK/Splunk etc? Could NaBox help here? I see it has some elastic elements (logstatsh etc.) so can these be leveraged?
Item 2: An example of this would be that I have say two clusters that should have the exact same fpolicy and log forwadring configs. How to chek they are the same? Powershell script with comprae-objects seems one route.
Thanks in advance.
