[syslog-ng] syslog-ng not writing logs to /var/log/messages

Mon Oct 29 19:45:54 CET 2007

Hi,

I am unable to get the syslog-ng to write messages to the
/var/log/messages file. Syslog-ng receives the messages but doesn't seem
to write it to the /var/log/message file. Here is the log from the
syslog-ng:

/syslog-ng # /syslog-ng/sbin/syslog-ng  -e -v -d -F -f
/syslog-ng/syslog-ng.conf -C /

syslog-ng starting up; version='2.0.5'

Syslog connection accepted; from='AF_UNIX(anonymous)',
to='AF_UNIX(/dev/log)'

Incoming log entry; line='<83>Mar  3 18:54:10 login:
pam_rohati_auth(login:auth): user name not valid'

Filter rule evaluation begins; filter_rule='f_filter2'

Filter node evaluation result; filter_result='match',
filter_type='level'

Filter rule evaluation result; filter_result='match',
filter_rule='f_filter2'

Initializing destination file writer; template='/var/log/messages',
filename='/var/log/messages'

Incoming log entry; line='<85>Mar  3 18:54:10 login: FAILED LOGIN
SESSION FROM (null) FOR , System error'

Filter rule evaluation begins; filter_rule='f_filter2'

Filter node evaluation result; filter_result='match',
filter_type='level'

Filter rule evaluation result; filter_result='match',
filter_rule='f_filter2'

EOF occurred while reading; fd='6'

Closing log reader fd; fd='6'

Here is the syslog-ng configuration file:

options {

    sync (2);

    time_reopen (10);

    log_fifo_size (10);

    long_hostnames (off);

    use_dns (no);

    use_fqdn (no);

    create_dirs (yes);

    keep_hostname (yes);

};

source s_sys {

    unix-stream ("/dev/log");

#    internal();

};

destination d_cons { file("/dev/console"); };

destination d_mesg { file("/var/log/messages"); };

filter f_filter2   { level(info..emerg); };

log { source(s_sys); filter(f_filter2); destination(d_mesg); };

log { source(s_sys); destination(d_mesg); flags(fallback);};

Thanks in advance for help.

-Shashank

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.balabit.hu/pipermail/syslog-ng/attachments/20071029/4b9accf0/attachment.htm 