[syslog-ng]Anyone got a good Solaris 8 client config to spare?

Victor victord@paid.com
Fri, 26 Apr 2002 17:14:00 -0400 

----- Original Message -----
From: "Tighe Schlottog" <TSchlottog@PeabodyEnergy.com>
To: <syslog-ng@lists.balabit.hu>
Sent: Friday, April 26, 2002 2:59 PM
Subject: [syslog-ng]Anyone got a good Solaris 8 client config to spare?


>
> If so, thanks in advance.
>
> Tighe Schlottog

Here is the config that I used on one of the sun boxes that seems to work
fine. Logs a bunch of things to the central server. Local5 is something I
used for myself, so you might not need it (You can safely remove that if you
don't need it).

HTH
Victor


#
# Syslog-ng example configuration file for Solaris
#
# Copyright (c) 1999 Balazs Scheidler
# $Id: syslog-ng.conf.solaris,v 1.2 1999/11/15 12:30:41 bazsi Exp $
#
# Solaris 2.5.1 and below uses the STREAMS driver, above extends it
# with doors. For 2.5.1 remove the door() option from the source
declaration.
#

source local { sun-streams("/dev/log" door("/etc/.syslog_door"));
internal(); };

filter f_auth      { facility(auth); };
filter f_cron      { facility(cron); };
filter f_daemon    { facility(daemon) and
level(info,warn,notice,err,crit,alert,emerg); };
filter f_kern      { facility(kern); };
filter f_mail      { facility(mail); };
filter f_messages  { level(info..warn) and not facility(auth, mail, news,
local5); };
filter f_www       { facility(local5); };

filter f_debug     { not facility(auth, news, mail, local5); };
filter f_emergency { level(emerg); };
filter f_info      { level(info); };
filter f_notice    { level(notice); };
filter f_warn      { level(warn); };
filter f_crit      { level(crit); };
filter f_err       { level(err); };

destination authlog   { file("/var/log/auth.log"   sync(0) log_fifo_size(10)
                        create_dirs(yes) owner(root) group(system)
perm(0660) dir_perm(0770)); };
destination cronlog   { file("/var/log/cron.log"   sync(0) log_fifo_size(10)
                        create_dirs(yes) owner(root) group(system)
perm(0660) dir_perm(0770)); };
destination daemonlog { file("/var/log/daemon.log" sync(0) log_fifo_size(10)
                        create_dirs(yes) owner(root) group(system)
perm(0660) dir_perm(0770)); };
destination kernlog   { file("/var/log/kern.log"   sync(0) log_fifo_size(10)
                        create_dirs(yes) owner(root) group(system)
perm(0660) dir_perm(0770)); };
destination mailinfo  { file("/var/log/mail.info"  sync(0) log_fifo_size(10)
                        create_dirs(yes) owner(root) group(system)
perm(0660) dir_perm(0770)); };
destination mailwarn  { file("/var/log/mail.warn"  sync(0) log_fifo_size(10)
                        create_dirs(yes) owner(root) group(system)
perm(0660) dir_perm(0770)); };
destination mailerr   { file("/var/log/mail.err"   sync(0) log_fifo_size(10)
                        create_dirs(yes) owner(root) group(system)
perm(0660) dir_perm(0770)); };
destination messages  { file("/var/log/messages"   sync(0) log_fifo_size(10)
                        create_dirs(yes) owner(root) group(system)
perm(0660) dir_perm(0770)); };
destination wwwacclog { file("/var/log/www.access.log"  sync(0)
log_fifo_size(10)
                        create_dirs(yes) owner(root) group(system)
perm(0660) dir_perm(0770)); };
destination wwwerrlog { file("/var/log/www.errors.log"  sync(0)
log_fifo_size(10)
                        create_dirs(yes) owner(root) group(system)
perm(0660) dir_perm(0770)); };
destination loghost   { tcp("XXX.XXX.XXX.XXX" port(514)); };

############################################################################
#
# Actual Logs
#    This brings all of the above together to make a log. A log needs:
#    1. source
#    2. filters (if any)
#    3. destination
############################################################################
#
log { source(local); destination(loghost); };
log { source(local); filter(f_auth); destination(authlog); };
log { source(local); filter(f_cron); destination(cronlog); };
log { source(local); filter(f_daemon); destination(daemonlog); };
log { source(local); filter(f_kern); destination(kernlog); };
# log { source(local); filter(f_mail); filter(f_info);
destination(mailinfo); };
# log { source(local); filter(f_mail); filter(f_warn);
destination(mailwarn); };
# log { source(local); filter(f_mail); filter(f_err);
destination(mailerr); };
# log { source(local); filter(f_messages); destination(messages);};
# log { source(local); filter(f_www); filter(f_info);
destination(loghost);};
# log { source(local); filter(f_www); filter(f_err); destination(loghost);};