Logwatch is a modular log analyser that runs every night and mails you the results. It can also be run from command line.The output is by service and you can limit the output to one particular service. The subscripts which are responsible for the output, mostly convert the raw log lines in structured format.
Logwatch generally ignores the time component in the output, that means, you will know that the reported event was logged in the requested range of time, but you will have to go to the raw log files to get the exact details.
Install logwatch using the following comamnd
sudo apt-get install logwatch
This will install all the required packages
Configuring Logwatch
First you need to make sure you server is able to send the mails outside you can do this using postfix with SMTP server configuration
Now you need to edit logwatch.conf file
sudo nano /usr/share/logwatch/default.conf/logwatch.conf
Change the following information
Output = mail
Format = html
MailTo = test@gmail.com
Save and exit the file
If you want to know more available options check logcheck manpage using the following command from your terminal
man logcheck
Now edit the 00logwatch file
sudo nano /etc/cron.daily/00logwatch
add the following line
/usr/sbin/logwatch –mailto test@gmail.com
Save and exit the file