[syslog-ng]Trouble using syslog-ng on Solaris 8

Robin Brown robin_brown@totalcomm.com
Wed, 19 Feb 2003 13:35:32 -0500


Hi, running solaris 8 and syslog-ng 1.5.26.  It all seems to start just
fine, no errors at startup or when running.  But none of the logs get
populated and I can see the UDP traffic is still coming in.  Any way to
see if it's simply not matching the host criteria for some reason?

Below is my config, any help is appreciated:


source net { udp(); };
source local { sun-streams("/dev/log"
door("/etc/.syslog_door"));internal(); };

filter f_mine { host("router1") or host("router2") or host("router3");
};
filter f_theirs { host("xxx.xxx.xxx.79"); };
filter f_next { host("xxx.xxx.xxx.230") or host ("xxx.xxx.xxx.129"); };
filter f_right { host("xxx.xxx.xxx.14"); };

destination mine { file("/var/log/mine.log"); };
destination theirs { file("/var/log/theirs.log"); };
destination next { file("/var/log/next.log"); };
destination right { file("/var/log/right.log"); };
destination all { file("/var/adm/messages"); };

log { source(net); filter(f_mine); destination(mine); };
log { source(net); filter(f_theirs); destination(theirs); };
log { source(net); filter(f_next); destination(next); };
log { source(net); filter(f_right); destination(right); };
log { source(local); destination(all); };


Regards,
Robin