That would do it! Thanks --- Nate Campi <nate@campin.net> wrote:
On Tue, Jan 13, 2004 at 02:24:51PM -0800, Chance Ellis wrote:
I am running syslog-ng v. on Solaris 8.
Below is my config file. I am not able to see messages coming in off the wire. If I run syslogd the messages are logged properly.
Any help is appreciated.
--------Begin config-------------
options { long_hostnames(off); sync(0); }; source src { sun-stream("/dev/log" door("/etc/.syslog_door")); internal(); }; source net { udp(); }; destination console { usertty("root"); }; destination 10-1-1-5 { file("/var/log/10-1-1-5"); }; filter f_10-1-1-5 { host("hostname") and match("something"); }; log { source(src); destination(console); }; log { source(src); filter(f_10-1-1-5); destination(10-1-1-5); };
You don't have any log statements using the net source. Merge your net and net sources into one, or add a log statement logging the net source.
I'd change this:
-- snip -- source src { sun-stream("/dev/log" door("/etc/.syslog_door")); internal(); };
source net { udp(); }; -- snip --
...to this:
-- snip -- source src { sun-stream("/dev/log" door("/etc/.syslog_door")); internal(); udp(); }; -- snip --
Now your log statements catch all your input, which is what you seem to expect. -- Nate
"Get your facts first, and then you can distort them as much as you please." - Samuel Clemens
_______________________________________________ syslog-ng maillist - syslog-ng@lists.balabit.hu https://lists.balabit.hu/mailman/listinfo/syslog-ng Frequently asked questions at http://www.campin.net/syslog-ng/faq.html
__________________________________ Do you Yahoo!? Yahoo! Hotjobs: Enter the "Signing Bonus" Sweepstakes http://hotjobs.sweepstakes.yahoo.com/signingbonus