I have syslog-ng
running successfully on several of our Solaris servers, but I can't get it to
work with our logging server. I have the following config:
source local {
sun-streams("/dev/log" door("/etc/.syslog_door")); internal(); };
source
s_tcp { tcp(ip(0.0.0.0)); };
source s_udp { udp(); };
<...filters
removed...>
log { source(local);
filter (DEFAULT); destination(all); };
log { source(s_udp); filter (DEFAULT);
destination(all); };
log { source(s_tcp); filter (DEFAULT); destination(all);
};
I've simplified the
config just to see if I can get messages to show up anywhere. It's not logging
any messages from network devices, although it logs local messages just fine. I
know the messages are getting there b/c syslogd is logging them and I've sniffed
the network to verify UDP and port 514.
I've also tried
declaring the tcp and udp sources in the local definition.
I know this
can work. What am I missing?