I'm a syslog-ng newbie and so am hoping that this is not too much of a FAQ. A nod of thanks to the syslog-ng developers for syslog-ng btw! I need to write a unix-socket-based destination server that will accept data from syslog-ng. Hence, I'm trying to find a documented definition of syslog-ng's log records as my server would receive them. Can anyone provide a pointer or two as I cannot find this in the docs? I have a test server that receives records of the following form: <22><standard syslog log<22><another standard syslog record>, etc, etc What is the meaning of <22>? Can I rely on this as a record separator? Many thanks, Paul MWEB: S.A.'s most trusted and reliable Internet Service Provider. Just Like That. To join, go to: http://join.mweb.co.za or call 0860032000.
* Paul Gamble - MWEB <PGamble@mweb.com>
I have a test server that receives records of the following form: <22><standard syslog log<22><another standard syslog record>, etc, etc What is the meaning of <22>? Can I rely on this as a record separator?
See a syslog protocol document, such as RFC 3164, as well as the local sys/syslog.h header file for details on the format of a syslog message. For a testing UDP syslog daemon implementation in Perl, see: http://sial.org/code/perl/scripts/syslog_snarf.pl
participants (2)
-
Jeremy Mates
-
Paul Gamble - MWEB