[syslog-ng]Anyone got a good Solaris 8 client config to spare?
Victor
victord@paid.com
Fri, 26 Apr 2002 17:14:00 -0400
----- Original Message -----
From: "Tighe Schlottog" <TSchlottog@PeabodyEnergy.com>
To: <syslog-ng@lists.balabit.hu>
Sent: Friday, April 26, 2002 2:59 PM
Subject: [syslog-ng]Anyone got a good Solaris 8 client config to spare?
>
> If so, thanks in advance.
>
> Tighe Schlottog
Here is the config that I used on one of the sun boxes that seems to work
fine. Logs a bunch of things to the central server. Local5 is something I
used for myself, so you might not need it (You can safely remove that if you
don't need it).
HTH
Victor
#
# Syslog-ng example configuration file for Solaris
#
# Copyright (c) 1999 Balazs Scheidler
# $Id: syslog-ng.conf.solaris,v 1.2 1999/11/15 12:30:41 bazsi Exp $
#
# Solaris 2.5.1 and below uses the STREAMS driver, above extends it
# with doors. For 2.5.1 remove the door() option from the source
declaration.
#
source local { sun-streams("/dev/log" door("/etc/.syslog_door"));
internal(); };
filter f_auth { facility(auth); };
filter f_cron { facility(cron); };
filter f_daemon { facility(daemon) and
level(info,warn,notice,err,crit,alert,emerg); };
filter f_kern { facility(kern); };
filter f_mail { facility(mail); };
filter f_messages { level(info..warn) and not facility(auth, mail, news,
local5); };
filter f_www { facility(local5); };
filter f_debug { not facility(auth, news, mail, local5); };
filter f_emergency { level(emerg); };
filter f_info { level(info); };
filter f_notice { level(notice); };
filter f_warn { level(warn); };
filter f_crit { level(crit); };
filter f_err { level(err); };
destination authlog { file("/var/log/auth.log" sync(0) log_fifo_size(10)
create_dirs(yes) owner(root) group(system)
perm(0660) dir_perm(0770)); };
destination cronlog { file("/var/log/cron.log" sync(0) log_fifo_size(10)
create_dirs(yes) owner(root) group(system)
perm(0660) dir_perm(0770)); };
destination daemonlog { file("/var/log/daemon.log" sync(0) log_fifo_size(10)
create_dirs(yes) owner(root) group(system)
perm(0660) dir_perm(0770)); };
destination kernlog { file("/var/log/kern.log" sync(0) log_fifo_size(10)
create_dirs(yes) owner(root) group(system)
perm(0660) dir_perm(0770)); };
destination mailinfo { file("/var/log/mail.info" sync(0) log_fifo_size(10)
create_dirs(yes) owner(root) group(system)
perm(0660) dir_perm(0770)); };
destination mailwarn { file("/var/log/mail.warn" sync(0) log_fifo_size(10)
create_dirs(yes) owner(root) group(system)
perm(0660) dir_perm(0770)); };
destination mailerr { file("/var/log/mail.err" sync(0) log_fifo_size(10)
create_dirs(yes) owner(root) group(system)
perm(0660) dir_perm(0770)); };
destination messages { file("/var/log/messages" sync(0) log_fifo_size(10)
create_dirs(yes) owner(root) group(system)
perm(0660) dir_perm(0770)); };
destination wwwacclog { file("/var/log/www.access.log" sync(0)
log_fifo_size(10)
create_dirs(yes) owner(root) group(system)
perm(0660) dir_perm(0770)); };
destination wwwerrlog { file("/var/log/www.errors.log" sync(0)
log_fifo_size(10)
create_dirs(yes) owner(root) group(system)
perm(0660) dir_perm(0770)); };
destination loghost { tcp("XXX.XXX.XXX.XXX" port(514)); };
############################################################################
#
# Actual Logs
# This brings all of the above together to make a log. A log needs:
# 1. source
# 2. filters (if any)
# 3. destination
############################################################################
#
log { source(local); destination(loghost); };
log { source(local); filter(f_auth); destination(authlog); };
log { source(local); filter(f_cron); destination(cronlog); };
log { source(local); filter(f_daemon); destination(daemonlog); };
log { source(local); filter(f_kern); destination(kernlog); };
# log { source(local); filter(f_mail); filter(f_info);
destination(mailinfo); };
# log { source(local); filter(f_mail); filter(f_warn);
destination(mailwarn); };
# log { source(local); filter(f_mail); filter(f_err);
destination(mailerr); };
# log { source(local); filter(f_messages); destination(messages);};
# log { source(local); filter(f_www); filter(f_info);
destination(loghost);};
# log { source(local); filter(f_www); filter(f_err); destination(loghost);};