[syslog-ng] help for windows logging
Roberto Nibali
ratz at drugphish.ch
Thu Jun 23 11:10:57 CEST 2005
> here is my conf file.. as you can see this is the sample conf file...
> what i need more is to log windows pc at the moment.
Colour me blind but I don't see the source local definition. I only see
a source src definition.
> options { long_hostnames(off); sync(0); };
>
> ####windows logging####
>
> filter windows {
> program(MSWinEventLog);
> };
> destination windows {
> file("/var/log/archive/windows/$R_YEAR/$R_MONTH/$R_YEAR-$R_MONTH-$R_DAY"
> template("$ISODATE <$FACILITY.$PRIORITY> $HOST $MSG\n")
> template_escape(no)
> );
> };
> log {
> source(local); filter(windows); destination(windows);
s/local/src/ should do the trick.
> flags(final);
> };
>
> ####windows logging####
> source src { unix-stream("/dev/log"); internal(); };
or you add following line to your configuration file:
source local { unix-stream("/dev/log"); internal(); };
Either way, you need to have the source defined which you want to use in
your log statement.
Cheers,
Roberto Nibali, ratz
--
echo '[q]sa[ln0=aln256%Pln256/snlbx]sb3135071790101768542287578439snlbxq'|dc
More information about the syslog-ng
mailing list