linux rsyslogd jurnald - ghdrako/doc_snipets GitHub Wiki

It is an improved version of the original syslog daemon, and it possesses the ability to quickly process and forward logs to any location in an IP network. Aside from syslog and rsyslog, there is syslog-ng, which is yet another daemon for handling logs. The default log handler depends on the distro one chooses. Rsyslog comes by default in many Red Hat-based distros. Run the following command to verify its presence and version on your system:

rsyslogd -v

systemctl status rsyslog

Many newer systems have replaced rsyslogd with journald for logging. You can choose either option, or even both, to handle your logging needs. For more information, see the documentation for your distribution.

https://pl.euro-linux.com/blog/o-systemd-journald-slow-kilka/

edit /etc/systemd/journald.conf and then reload the journal service like:

systemctl reload systemd-journald.service