[syslog-ng]$HOST gives IP address instead of hostname
Balazs Scheidler
bazsi@balabit.hu
Thu, 22 Aug 2002 16:02:40 +0200
On Thu, Aug 22, 2002 at 02:14:19PM +0200, _/CaT_ wrote:
> HI *,
> I have to get events from _Enterasys_ machines and I need to resolve IP
> address with /etc/hosts.
> When I set on Keep_hostname() I receive logs bad formatted, an example:
>
> Before:
> 2002 Aug 22 10:42:20 10.1.163.3 local7.err unknown or ambiguous facility
> \'e\'
>
> After:
> 2002 Aug 22 10:42:20 %CLI-E-FACUNKNWN, local7.err unknown or ambiguous
> facility \'e\'
as it seems the first one is with keep_hostname() set to no, the latter is
on, and your device does not send hostnames.
syslog-ng thinks that %CLI-E-FACUNKNWN is a hostname unless you specify
check_hostnames(yes) (it is a post 1.5.19 feature)
I'm planning to release 1.5.20 which includes this check and the kernel
message mangling as well.
>
> And more when I try to set Gethostname() on or yes ,in the configuration
> file I received an error.:
gethostbyname() is not a syslog-ng option, it is a C function to query a
hostname by IP address.
--
Bazsi
PGP info: KeyID 9AF8D0A9 Fingerprint CD27 CFB0 802C 0944 9CFD 804E C82C 8EB1