Hey Peter,<div>I have a video (slides really) that show the configuration steps as well, located at:</div><div><a href="http://www.logzilla.pro/syslog-ng-configuration">http://www.logzilla.pro/syslog-ng-configuration</a></div>
<div><br></div><div>The slides show:</div><div><span class="Apple-style-span" style="font-family: arial, sans-serif; font-size: 12px; background-color: rgb(255, 255, 255); "><ul style="vertical-align: baseline; font-family: inherit; font-style: inherit; font-size: 12px; outline-width: 0px; outline-style: initial; outline-color: initial; padding-top: 0px; padding-right: 0px; padding-bottom: 0px; padding-left: 0px; margin-top: 1em; margin-right: 1em; margin-bottom: 1em; margin-left: 2em; list-style-position: outside; ">
<li style="vertical-align: baseline; font-family: inherit; font-style: inherit; font-size: 12px; outline-width: 0px; outline-style: initial; outline-color: initial; padding-top: 0px; padding-right: 0px; padding-bottom: 0px; padding-left: 0px; margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px; ">
The five "parts" of a syslog-ng configuration file</li><li style="vertical-align: baseline; font-family: inherit; font-style: inherit; font-size: 12px; outline-width: 0px; outline-style: initial; outline-color: initial; padding-top: 0px; padding-right: 0px; padding-bottom: 0px; padding-left: 0px; margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px; ">
How to filter incoming syslog messages</li><li style="vertical-align: baseline; font-family: inherit; font-style: inherit; font-size: 12px; outline-width: 0px; outline-style: initial; outline-color: initial; padding-top: 0px; padding-right: 0px; padding-bottom: 0px; padding-left: 0px; margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px; ">
How to specify destinations such as other servers, files, databases, etc.</li><li style="vertical-align: baseline; font-family: inherit; font-style: inherit; font-size: 12px; outline-width: 0px; outline-style: initial; outline-color: initial; padding-top: 0px; padding-right: 0px; padding-bottom: 0px; padding-left: 0px; margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px; ">
Applying the 5 steps so that syslog-ng will use them.</li></ul></span></div><div><br clear="all">______________________________________________________________ <br><br>Clayton Dukes<br>______________________________________________________________<br>
<br><br><div class="gmail_quote">On Fri, Aug 19, 2011 at 6:28 AM, Peter Czanik <span dir="ltr"><<a href="mailto:czanik@balabit.hu">czanik@balabit.hu</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
<u></u>
<div bgcolor="#ffffff" text="#000000">
Hello,<br>
<br>
I just sent out the syslog-ng newsletter a few days ago, but there
are already fresh news. But first of all: If you got 1 minute,
please fill our
syslog-ng performance survey at
<a href="https://www.surveymonkey.com/s/6ZQDVH6" target="_blank">https://www.surveymonkey.com/s/6ZQDVH6</a><br>
<br>
<p style="margin-bottom:0in">There was a new release of syslog-ng
OSE 3.3 last weekend, it's now at beta2. FreeBSD ports was the
first
to add support for it, and now here are the openSUSE packages for
testing:
<a href="http://download.opensuse.org/repositories/home:/czanik:/syslog-ng33/" target="_blank">http://download.opensuse.org/repositories/home:/czanik:/syslog-ng33/</a>
or if more interested in package sources, then check
<a href="https://build.opensuse.org/project/show?project=home%3Aczanik%3Asyslog-ng33" target="_blank">https://build.opensuse.org/project/show?project=home%3Aczanik%3Asyslog-ng33</a>
where these packages were built.<br>
Systemd support is being reworked in
openSUSE, so please stick to sysvinit (which is the default) when
testing these packages. There is one known problem affecting
functionality: mongodb support is broken. It's already fixed in
git,
so it will be part of the next release, or if there is a request
for
it, I can add the patch to the beta2 package.<br>
</p>
<p style="margin-bottom:0in">I just found a nice introductory
article about syslog-ng at Linux Journal, which describes the
basics
and also some more interesting topics and provides good
explanations.
You can read it at
<a href="http://www.linuxjournal.com/content/creating-centralized-syslog-server" target="_blank">http://www.linuxjournal.com/content/creating-centralized-syslog-server</a>
It was written on Debian, but most information should apply to any
Linux distribution.</p>
<p style="margin-bottom:0in"><br>
</p>
Bye,<br><font color="#888888">
<pre cols="72">--
Peter Czanik (CzP) <a href="mailto:czanik@balabit.hu" target="_blank"><czanik@balabit.hu></a>
BalaBit IT Security / syslog-ng upstream
<a href="http://czanik.blogs.balabit.com/" target="_blank">http://czanik.blogs.balabit.com/</a>
</pre>
</font></div>
<br>______________________________________________________________________________<br>
Member info: <a href="https://lists.balabit.hu/mailman/listinfo/syslog-ng" target="_blank">https://lists.balabit.hu/mailman/listinfo/syslog-ng</a><br>
Documentation: <a href="http://www.balabit.com/support/documentation/?product=syslog-ng" target="_blank">http://www.balabit.com/support/documentation/?product=syslog-ng</a><br>
FAQ: <a href="http://www.balabit.com/wiki/syslog-ng-faq" target="_blank">http://www.balabit.com/wiki/syslog-ng-faq</a><br>
<br>
<br></blockquote></div><br></div>