[syslog-ng]no logging
Dave Johnson
syslog-ng@lists.balabit.hu
Sat, 8 Jan 2005 16:03:34 -0600
Try removing the filter in the log{} line for troubleshooting purposes.
Anything logging to udp 514 on that box should be logged to the
60HUDSONST file. Then from there you can spend some time getting the
filters just right.
Make sure your dirs are setup [/var/syslog-ng/host] as create_dirs is
set to no in your optoins.
Oh, also FYI--Theres a small dive bar across the street if you start
to get too frusterated. ;) (I've spent a few nights in 60 hudson
[~7-9 years ago].)
On Fri, 7 Jan 2005 17:50:26 -0500, Michael Di Martino <mdm@telx.com> wrote:
> I was able to get syslog-ng running however nothing is being logged.
> I have verified that syslog-ng is running and listing on udp 514
> Here is a copy of my syslog-ng.conf file.
>
> #-----------------------------------------------------------------------
> -
> #General
> #-----------------------------------------------------------------------
> -
> options
> {
> chain_hostnames(no);
> create_dirs (no);
> dir_perm(0755);
> keep_hostname(yes);
> log_fifo_size(1024);
> long_hostnames(on);
> perm(0644);
> sync(0);
> time_reopen (10);
> use_dns(no);
> use_fqdn(no);
> };
>
> #-----------------------------------------------------------------------
> #log sources
> #-----------------------------------------------------------------------
> source network { udp(); };
> #-----------------------------------------------------------------------
> #Log Destinations
> #-----------------------------------------------------------------------
> destination 60HUDSONST
> {file("/var/syslog-ng/host/60HUDSONST.log"); };
>
> #_______________________________________________________________________
> #host based filters
> #-----------------------------------------------------------------------
> filter 60HUDSONST { host(192.168.11.1$); };
>
> #_______________________________________________________________________
> #put it all together
> #-----------------------------------------------------------------------
> log { source(network); filter(60HUDSONST); destination(60HUDSONST);
> };
>
> And Here is a the router syslog commands
> logging trap notifications
> logging facility local6
> logging 192.168.11.28
>
> Any ideas why nothing is being logged on the syslog-ng server
>
> Any help would be greatly appreciated.
>
> _______________________________________________
> syslog-ng maillist - syslog-ng@lists.balabit.hu
> https://lists.balabit.hu/mailman/listinfo/syslog-ng
> Frequently asked questions at http://www.campin.net/syslog-ng/faq.html
>
>