[syslog-ng]centralized syslog-server.
Hamilton, Andrew
Andrew.Hamilton@afccc.af.mil
Wed, 4 Dec 2002 09:47:59 -0500
Jon,
** comments in message.
-----Original Message-----
From: Jon Hofstad [mailto:Jon.Hofstad@ergo.no]
Sent: Wednesday, December 04, 2002 9:25 AM
To: 'syslog-ng@lists.balabit.hu'
Subject: [syslog-ng]centralized syslog-server.
Hello.
I`ve set up an syslog-ng server that will receive syslog-messages from
different hosts.
But I have some problems with my configuration.
I was hoping some one could point out what I`m doing wrong..
----------
This is the host`s configuration:
options { sync (0);
time_reopen (10);
log_fifo_size (1000);
long_hostnames (off);
use_dns (yes);
use_fqdn (no);
create_dirs (yes);
keep_hostname (yes);
};
source s_send { udp(); internal(); }; ** This will only pick up messages
from a udp source or internal. **Probably not too many since you are not
actually sending any messages to this host.
destination d_send { udp("192.168.80.94"); };
filter f_send { level(info); };
log { source(s_send); filter(f_send); destination(d_send); };
---------------------
AND here`s the server-config:
options { sync (0);
time_reopen (10);
log_fifo_size (1000);
long_hostnames (on);
use_dns (yes);
use_fqdn (no);
create_dirs (yes);
keep_hostname (yes);
};
source crusher-1 { udp(); internal(); };
destination d_crusher-1 { file("/var/log/crusher-1"); };
filter f_crusher-1 { host("192.168.80.141"); }
log { source(local); filter(f_filter2); destination(d_mesg); };
-----------
I`ve been snooping my interfaces and the host doesn`t seem to send out any
messages via udp..
Hints are welcomed:)
/Jon Hofstad
_______________________________________________
syslog-ng maillist - syslog-ng@lists.balabit.hu
https://lists.balabit.hu/mailman/listinfo/syslog-ng
Frequently asked questions at http://www.campin.net/syslog-ng/faq.html