# Begin /etc/syslog-ng/syslog-ng.conf

 


options { 	sync (0);
		time_reopen (10);
		log_fifo_size (1000);
		long_hostnames(off); 
		use_dns (yes);
		use_fqdn (no);
		create_dirs (yes);
		keep_hostname (yes);
};

source src {	unix-stream("/dev/log");
		internal();
		pipe("/proc/kmsg");
    };


source remotetcp { tcp(ip(0.0.0.0) port(514) max-connections(600)); };
source remoteudp { udp(); };



# Remote Logging
##########################


destination everything { file("/var/log/remotes/$HOST/$HOST-all-system.logs"); };
filter f_everything { level(debug..emerg); };
log { source(remotetcp); filter(f_everything); destination(everything); };
log { source(remoteudp); filter(f_everything); destination(everything); };

destination authpriv { file("/var/log/remotes/$HOST/$HOST-authpriv.log"); };
filter f_authpriv { facility(authpriv); };
log { source(remotetcp); filter(f_authpriv); destination(authpriv); };
log { source(remoteudp); filter(f_authpriv); destination(authpriv); };

destination auth     { file("/var/log/remotes/$HOST/$HOST-auth.log"); };
filter f_auth { facility(auth); };
log { source(remotetcp); filter(f_auth); destination(auth); };
log { source(remoteudp); filter(f_auth); destination(auth); };




# Local Destinations
#####################
destination syslog { file("/var/log/syslog.log"); };
destination messages { file("/var/log/messages.log"); };
destination auth { file("/var/log/auth.log"); };
destination authpriv { file("/var/log/authpriv.log"); };
destination cron { file("/var/log/cron.log"); };
destination kernel { file("/var/log/kernel.log"); };
destination daemon { file("/var/log/daemon.log"); };
destination lpr { file("/var/log/lpr.log"); };
destination mail { file("/var/log/mail.log"); };
destination debug { file("/var/log/debug.log"); };
#
destination console { usertty("root"); };
destination console_all { file("/dev/tty12"); };


# Local Filters
###############
filter f_syslog { not facility(authpriv, auth, mail); };
filter f_messages { level(info..warn) and not facility(auth, authpriv, mail, news); };
filter f_auth { facility(auth); };
filter f_authpriv { facility(auth, authpriv); };
filter f_cron { facility(cron); };
filter f_daemon { facility(daemon); };
filter f_kernel { facility(kern); };
filter f_lpr { facility(lpr); };
filter f_mail { facility(mail); };
filter f_debug { not facility(auth, authpriv, news, mail); };
# 
#
filter f_emergency { level(emerg); };
filter f_info { level(info); };
filter f_notice { level(notice); };
filter f_warn { level(warn); };
filter f_crit { level(crit); };
filter f_err { level(err); };


# Local Log 
############
log { source(src); filter(f_syslog); destination(syslog); };
log { source(src); filter(f_messages); destination(messages); };
log { source(src); filter(f_auth); destination(auth); };
log { source(src); filter(f_authpriv); destination(authpriv); };
log { source(src); filter(f_cron); destination(cron); };
log { source(src); filter(f_kernel); destination(kernel); };
log { source(src); filter(f_daemon); destination(daemon); };
log { source(src); filter(f_lpr); destination(lpr); };
log { source(src); filter(f_mail); destination(mail); };
log { source(src); filter(f_debug); destination(debug); };
#
#
log { source(src); filter(f_emergency); destination(console); };
log { source(src); destination(console_all); };