Hi, On Thu, Sep 15, 2011 at 2:31 PM, Jay <difficult_id@yahoo.com> wrote:
Hello
Is there a mechanism to query the syslog-ng at regular intervals to find the number of syslogs received by it from the time it was started or number of syslogs received in the last one hour ?
If it is possible to configure syslog-ng to send this information automatically at regular intervals that would help.
The stats_freq() parameter controls how often syslog-ng sends this information through the internal() channel, you can store these logs anywhere you want. In addition you can use 'syslog-ng-ctl stats' to query the counters in real-time. The counters contain the number of logs processed since startup so just subtract the previous results to get the stats of the last interval. hth, Sandor