[syslog-ng]syslog-ng
Michael Earls
Michael.Earls@chmcc.org
Tue, 15 Jan 2002 11:35:14 -0500
This is a MIME message. If you are reading this text, you may want to
consider changing to a mail reader or gateway that understands how to
properly handle MIME multipart messages.
--=_AFF2DAE8.C6A74B27
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: quoted-printable
I will make things very clear on what i am trying to do with syslog-ng,,
i have 200 routers and i want them to all point to my syslog server, that =
is why i created a sep file for each router, how can i get them to log to =
a mysql databse, i have tried just loggin one ip to the databse useing =
sqlsyslogd tables but that did not work,=20
what would be the best way for me to do this, and how do i do this,
thanks
michael
>>> nate@campin.net 01/14/02 08:06PM >>>
On Mon, Jan 14, 2002 at 07:48:35PM -0500, Michael Earls wrote:
> sorry if i am missing something but I do not see that there, i see that =
u are logging to a host file, or are using sqlsyslog, i am looking for a =
way to take the statement for syslog-ng then pipe that into a database,=20
Are you saying you only want to insert *certain* messages into the
database? I really don't understand.
I see now that my example syslog-ng.conf doesn't have an example line
for using sqlsyslogd. If that's what you need, here you go:
----
destination sqlsyslogd { program("/usr/local/sbin/sqlsyslogd -u sqlsyslogd =
-t logs sqlsyslogd -p"); };
log { source(src); destination(sqlsyslogd); };
----
"src" in this case is all the incoming messages, there's no filtering of
messages.
You still need to setup your database according to the instructions for
sqlsyslogd. Read the docs that come with it.
--=20
Nate Campi http://www.campin.net GnuPG key: 0xC17AEF79 =20
"My computer's sick. I think my modem is a carrier."
_______________________________________________
syslog-ng maillist - syslog-ng@lists.balabit.hu
https://lists.balabit.hu/mailman/listinfo/syslog-ng
--=_AFF2DAE8.C6A74B27
Content-Type: text/html; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable
Content-Description: HTML
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META content=3D"text/html; charset=3Diso-8859-1" http-equiv=3DContent-Type=
>
<META content=3D"MSHTML 5.00.3103.1000" name=3DGENERATOR></HEAD>
<BODY style=3D"FONT: 8pt Tahoma; MARGIN-LEFT: 2px; MARGIN-TOP: 2px">
<DIV><FONT size=3D3>I will make things very clear on what i am trying to =
do with=20
syslog-ng,,</FONT></DIV>
<DIV> </DIV>
<DIV><FONT size=3D3>i have 200 routers and i want them to all point to my =
syslog=20
server, that is why i created a sep file for each router, how =
can i=20
get them to log to a mysql databse, i have tried just loggin one ip to =
the=20
databse useing sqlsyslogd tables but that did not work, </FONT></DIV>
<DIV> </DIV>
<DIV> </DIV>
<DIV><FONT size=3D3>what would be the best way for me to do this, and how =
do i do=20
this,</FONT></DIV>
<DIV> </DIV>
<DIV><FONT size=3D3>thanks</FONT></DIV>
<DIV> </DIV>
<DIV><FONT size=3D3>michael</FONT></DIV>
<DIV> </DIV>
<DIV><BR>>>> nate@campin.net 01/14/02 08:06PM >>><BR>On =
Mon,=20
Jan 14, 2002 at 07:48:35PM -0500, Michael Earls wrote:<BR>> sorry if i =
am=20
missing something but I do not see that there, i see that u are logging to =
a=20
host file, or are using sqlsyslog, i am looking for a way to take the =
statement=20
for syslog-ng then pipe that into a database, <BR><BR>Are you saying you =
only=20
want to insert *certain* messages into the<BR>database? I really don't=20
understand.<BR><BR>I see now that my example syslog-ng.conf doesn't have =
an=20
example line<BR>for using sqlsyslogd. If that's what you need, here you=20
go:<BR><BR>----<BR>destination sqlsyslogd { program("/usr/local/sbin/sqlsys=
logd=20
-u sqlsyslogd -t logs sqlsyslogd -p"); };<BR><BR>log { source(src);=20
destination(sqlsyslogd); };<BR>----<BR>"src" in this case is all the =
incoming=20
messages, there's no filtering of<BR>messages.<BR><BR>You still need to =
setup=20
your database according to the instructions for<BR>sqlsyslogd. Read the =
docs=20
that come with it.<BR>-- <BR>Nate Campi <A=20
href=3D"http://www.campin.net /">http://www.campin.net&nbs=
p; </A>=20
GnuPG key: 0xC17AEF79 <BR><BR>"My computer's sick. I think my =
modem=20
is a=20
carrier."<BR><BR><BR>_______________________________________________<BR>sys=
log-ng=20
maillist - syslog-ng@lists.balabit.hu<BR><A=20
href=3D"https://lists.balabit.hu/mailman/listinfo/syslog-ng">https://lists.=
balabit.hu/mailman/listinfo/syslog-ng</A><BR></DIV></BODY></HTML>
--=_AFF2DAE8.C6A74B27--