I am trying to use syslog-ng to monitor some files and push anything added to the file out to a splunk instance.  Everytime syslong-ng starts, there is a burst of traffic, but nothing after that.<br>I&#39;ve run it manually in debug mode to see if there is anything, but I don&#39;t get any output. I&#39;m thinking there is an issue with the config file, but I&#39;m not sure what the problem might be.<br>

I took the stock config file (as it comes from Ubuntu 10.04.2: syslog-ng 2.0.9-4.2) and added several sources, filters and log directives all going to one destination:<br># Additional sources to monitor IW<br><br>destination d_remote { tcp(&quot;10.170.230.60&quot; , port(4957)); };<br>

<br>source s_nginx_20 { file (&quot;/iw-deploy/log/access-client-internal.log&quot; log-prefix(&quot;access-client-internal: &quot;)); };<br>source s_nginx_21 { file (&quot;/iw-deploy/log/access-client.log&quot; log-prefix(&quot;access-client: &quot;)); };<br>

source s_nginx_22 { file (&quot;/iw-deploy/log/access-server.log&quot; log-prefix(&quot;access-client-server: &quot;)); };<br>source s_nginx_23 { file (&quot;/iw-deploy/log/celeryd.log&quot; log-prefix(&quot;celeryd: &quot;)); };<br>

source s_nginx_24 { file (&quot;/iw-deploy/log/error.log&quot; log-prefix(&quot;error-log: &quot;)); };<br>source s_nginx_25 { file (&quot;/iw-deploy/log/installer.log&quot; log-prefix(&quot;installer: &quot;)); };<br>source s_nginx_26 { file (&quot;/iw-deploy/log/island_gen.log&quot; log-prefix(&quot;island_gen: &quot;)); };<br>

source s_nginx_27 { file (&quot;/iw-deploy/log/persistence.log&quot; log-prefix(&quot;persistence: &quot;)); };<br>source s_nginx_28 { file (&quot;/iw-deploy/log/sec.log&quot; log-prefix(&quot;sec: &quot;)); };<br>source s_nginx_29 { file (&quot;/iw-deploy/log/worship1.log&quot; log-prefix(&quot;worship1: &quot;)); };<br>

source s_nginx_30 { file (&quot;/iw-deploy/log/worship2.log&quot; log-prefix(&quot;worship2: &quot;)); };<br>source s_nginx_31 { file (&quot;/iw-deploy/log/worship_ff1.log&quot; log-prefix(&quot;worship_ff1: &quot;)); };<br>

source s_nginx_32 { file (&quot;/iw-deploy/log/worship_router.log&quot; log-prefix(&quot;worship_router: &quot;)); };<br>source s_nginx_33 { file (&quot;/iw-deploy/log/persistence.err&quot; log-prefix(&quot;persistence_err: &quot;)); };<br>

<br>filter f_nginx_20 { match(&quot;access-client-internal: &quot;); };<br>filter f_nginx_21 { match(&quot;access-client: &quot;); };<br>filter f_nginx_22 { match(&quot;access-client-server: &quot;); };<br>filter f_nginx_23 { match(&quot;celeryd: &quot;); };<br>

filter f_nginx_24 { match(&quot;error-log: &quot;); };<br>filter f_nginx_25 { match(&quot;installer: &quot;); };<br>filter f_nginx_26 { match(&quot;island_gen: &quot;); };<br>filter f_nginx_27 { match(&quot;persistence: &quot;); };<br>

filter f_nginx_28 { match(&quot;sec: &quot;); };<br>filter f_nginx_29 { match(&quot;worship1: &quot;); };<br>filter f_nginx_30 { match(&quot;worship2: &quot;); };<br>filter f_nginx_31 { match(&quot;worship_ff1: &quot;); };<br>

filter f_nginx_32 { match(&quot;worship_router: &quot;); };<br>filter f_nginx_33 { match(&quot;persistence_err: &quot;); };<br><br>log { source(s_nginx_20); filter(f_nginx_20); destination(d_remote); flags(catchall); };<br>

log { source(s_nginx_21); filter(f_nginx_21); destination(d_remote); flags(catchall); };<br>log { source(s_nginx_22); filter(f_nginx_22); destination(d_remote); flags(catchall); };<br>log { source(s_nginx_23); filter(f_nginx_23); destination(d_remote); flags(catchall); };<br>

log { source(s_nginx_24); filter(f_nginx_24); destination(d_remote); flags(catchall); };<br>log { source(s_nginx_25); filter(f_nginx_25); destination(d_remote); flags(catchall); };<br>log { source(s_nginx_26); filter(f_nginx_26); destination(d_remote); flags(catchall); };<br>

log { source(s_nginx_27); filter(f_nginx_27); destination(d_remote); flags(catchall); };<br>log { source(s_nginx_28); filter(f_nginx_28); destination(d_remote); flags(catchall); };<br>log { source(s_nginx_29); filter(f_nginx_29); destination(d_remote); flags(catchall); };<br>

log { source(s_nginx_30); filter(f_nginx_30); destination(d_remote); flags(catchall); };<br>log { source(s_nginx_31); filter(f_nginx_31); destination(d_remote); flags(catchall); };<br>log { source(s_nginx_32); filter(f_nginx_32); destination(d_remote); flags(catchall); };<br>

log { source(s_nginx_33); filter(f_nginx_33); destination(d_remote); flags(catchall); };<br><br>######<br><br>