multiple listen port for centralized syslog-ng - syslog-ng - lists.balabit.hu

newer
receiving udp from remote servers

multiple listen port for centralized syslog-ng

older
Using full hostnames

Alessandro Fiorenzi

23 Jan 2004 23 Jan '04

4:14 p.m.

Hi, I would like to setup a very customized version centralize syslog-ng. I would like to divide out server into tree areas - General Porpouse Server - IDS - Firewall for wich I would like to have multiple istance of syslog-ng listening each one on different port like: - General Porpouse Server: port 10000 - IDS : port 10001 - Firewall : port 10002 Is it possible to do? or how can I do to distinguish ? Thanks

Show replies by date

Ed Ravin

23 Jan 23 Jan

4:20 p.m.

On Fri, Jan 23, 2004 at 05:14:41PM +0100, Alessandro Fiorenzi wrote:

Hi, I would like to setup a very customized version centralize syslog-ng. ... for wich I would like to have multiple istance of syslog-ng listening each one on different port like:

- General Porpouse Server: port 10000 - IDS : port 10001 - Firewall : port 10002

You don't need multiple instances of syslog-ng - you would do something like this in the config file: source general { udp(port(10000)); } source ids { udp(port 10001)); } source firewall { udp(port 10002)); } And then process them separately as far as destinations, filtering, or whatever else you want to do.

7883

Age (days ago)

7883

Last active (days ago)

Download

1 comments

2 participants

tags

participants (2)

Alessandro Fiorenzi
Ed Ravin