Hiya-

I'm setting up new syslog servers using syslog-ng in a mostly Solaris environment.  Regular syslog logs messages from hosts with the actual hostname, but syslog-ng is logging the host's IP address instead.  Not all machines are in DNS.  Here's what I have:

options { chain_hostnames(no); use_time_recvd(yes); log_fifo_size(1000); };

source src { sun-streams("/dev/log" door("/etc/.syslog_door")); internal(); udp(); };

destination d_hostlogs { file("/logs1/HOSTS/$HOST/capturedmessages.$HOST.$YEAR$MONTH$DAY" owner(root) group(sys) perm(0600) dir_perm(0700) create_dirs(yes)); };

log { source(src); destination(d_hostlogs); };

Syslog-ng creates the files and dirs nicely.  I just can't get the actual hostname like I used to when running regular ol' out-o'-the-box syslogd.

I checked out the FAQ on Nate's site already (Nice job on the site and FAQ, Nate.  It’s been a very useful resource for me.).

Many thanks.

-->scottg