Thanks for responding.

So let me make sure I am understanding what you suggested.

You said that I could run SnareApache on the servers running apache, then let Snare send the Apache access logs to the local syslog on that same server then have the syslogd on that server send them to  the centralized syslog server that is logging via syslog-ng?

---

From: syslog-ng-bounces@lists.balabit.hu [mailto:syslog-ng-bounces@lists.balabit.hu] On Behalf Of Brian Bemis
Sent: Monday, November 21, 2005 2:39 PM
To: 'Syslog-ng users' and developers' mailing list'
Subject: RE: [syslog-ng] Apache Syslog-ng/Syslog-ng newbie

For the error logs, logging to syslog (or syslog-ng) is built into Apache.

For the access logs, try SNARE for Apache:

http://www.intersectalliance.com/projects/SnareApache/index.html

You can use this in conjunction with syslog-ng. It will send you’re apache logs to the syslog daemon on the local system, then all you have to do it set up syslog-ng to forward the logs to a central server and separate them according to the server sending the logs. This is all built into syslog-ng.

 

b

 

 

---

From: syslog-ng-bounces@lists.balabit.hu [mailto:syslog-ng-bounces@lists.balabit.hu] On Behalf Of Esquivel, Vicente
Sent: Monday, November 21, 2005 8:39 AM
To: Syslog-ng users' and developers' mailing list
Subject: [syslog-ng] Apache Syslog-ng/Syslog-ng newbie

 

Hello all,

 

I am new to this list, I am seeking some help on how to setup syslog-ng as a central log server.  More importantly I am wanting to know how to log all of my Apache servers to the central log server, but also create separate logs for each of the systems.  For example I am looking to do something like this:

 

Apache1

/var/log/Apache1/httpd/access.log

/var/log/Apache1/httpd/error.log

 

Apache2

/var/log/Apache2/httpd/access.log

/var/log/Apache2/httpd/error.log

 

Apache3

/var/log/Apache3/httpd/access.log

/var/log/Apache3/httd/error.log

 

and so on.

 

Thanks all in advance

 

Vince