[syslog-ng]syslog-ng 1.4.17 netzwerk logging
julius
syslog-ng@lists.balabit.hu
Sun, 25 Jan 2004 18:01:53 +0100
i used the example Debian GNU/Linux config and added these options on the log host(192.168.0.1):
source s_tcp { tcp(ip(0.0.0.0) port(514) max-connections(10)); };
log { source(s_tcp); destination(messages); };
and on the "source host" (192.168.0.3):
destination d_tcp { tcp(192.168.0.1); };
log { source(src); filter(f_messages); destination(d_tcp); };
now i get name queries from my bind thats running on the source host, but syslog queries the bind without stopping, the name server uses nearly 100% from the 133mhz...
whats wrong?