Hi list: I' ve just compiled syslog-ng in a Linux box running RedHat 6.0. Everything worked fine, except for one thing: there is no /etc/syslog-ng directory and no syslog-ng.conf file. Where can I find a sample configuration file ? Thank you very much. Sebastian Sanchez Security Operator se_sanchez@crm.com.ar
Hi list: I' ve just compiled syslog-ng in a Linux box running RedHat 6.0. Everything worked fine, except for one thing: there is no /etc/syslog-ng directory and no syslog-ng.conf file. Where can I find a sample configuration file ?
Under the /doc subdirectory. -- Bazsi PGP info: KeyID 9AF8D0A9 Fingerprint CD27 CFB0 802C 0944 9CFD 804E C82C 8EB1 url: http://www.balabit.hu/pgpkey.txt
On Mon, 6 Mar 2000, Sebastian Sanchez wrote:
Hi list: I' ve just compiled syslog-ng in a Linux box running RedHat 6.0. Everything worked fine, except for one thing: there is no /etc/syslog-ng directory and no syslog-ng.conf file. Where can I find a sample configuration file ?
Here, use mine :) mkdir /etc/syslog-ng cat > /etc/syslog-ng/syslog-ng.conf # Syslog-ng configuration file for # /etc/syslog-ng/syslog-ng.conf options { long_hostnames(off); sync(0); use_fqdn(yes);}; source local {sun-streams("/dev/log" door("/etc/.syslog_door"));internal();}; source stdlog {udp();}; destination auto { file("/var/log/$HOST.$FACILITY"); }; log { source(stdlog);source(local); destination(auto); }; ^D test with: /usr/local/sbin/syslog-ng -d -v /Joakim (syslog-ng-user for 5 days now!)
or here is another conf file # Global Options options { mark(600); sync(0); use_dns(yes); create_dirs(yes); }; # Source dirvers source src_int { internal(); }; source src { unix-stream("/dev/log"); }; # Destinations drivers; use macro expansion to make seperating logs easier destination d_facility { file("/var/log/syslog-ng/$HOST/$YEAR/$MONTH/$DAY/$FACILITY" perm(0600)); }; destination d_program { file("/var/log/syslog-ng/$HOST/$YEAR/$MONTH/$DAY/$PROGRAM" perm(0600)); }; # Filters filter f_fw { match(ACCEPT) or match(REJECT) or match(DENY); }; filter f_not_fw { not match(REJECT); }; # Finally, actually log everything to its appropriate place log { source("src"); destination("d_facility"); }; log { source("src"); destination("d_program"); }; # Log all firewall matches to a seperate log destination d_fw { file("/var/log/syslog-ng/firewall.log" perm(0600)); }; log { source("src"); filter("f_fw"); destination("d_fw"); }; # Log all internal() stuff to seperate log destination d_int { file("/var/log/syslog-ng/internal.log" perm(0600)); }; log { source("src_int"); destination("d_int"); }; # Log everything to a seperate log destination d_all { file("/var/log/syslog-ng/syslog-ng" perm(0600)); }; log { source("src_int"); source("src"); filter("f_not_fw"); destination("d_all"); }; # log everything remote/local to a console tty destination d_tty { file("/dev/tty11"); }; log { source("src"); source("src_int"); destination("d_tty"); }; Chris Scheller System/Network Administration Network One Internet, inc. http://www.networkone.net/ 1.888.GOT-NET1 On Mon, 6 Mar 2000, Joakim Rastberg wrote:
On Mon, 6 Mar 2000, Sebastian Sanchez wrote:
Hi list: I' ve just compiled syslog-ng in a Linux box running RedHat 6.0. Everything worked fine, except for one thing: there is no /etc/syslog-ng directory and no syslog-ng.conf file. Where can I find a sample configuration file ?
Here, use mine :)
mkdir /etc/syslog-ng cat > /etc/syslog-ng/syslog-ng.conf # Syslog-ng configuration file for # /etc/syslog-ng/syslog-ng.conf options { long_hostnames(off); sync(0); use_fqdn(yes);}; source local {sun-streams("/dev/log" door("/etc/.syslog_door"));internal();}; source stdlog {udp();}; destination auto { file("/var/log/$HOST.$FACILITY"); }; log { source(stdlog);source(local); destination(auto); }; ^D
test with: /usr/local/sbin/syslog-ng -d -v
/Joakim (syslog-ng-user for 5 days now!)
_______________________________________________ syslog-ng maillist - syslog-ng@lists.balabit.hu http://lists.balabit.hu/mailman/listinfo/syslog-ng
participants (4)
-
Balazs Scheidler
-
Chris Scheller
-
Joakim Rastberg
-
Sebastian Sanchez