[syslog-ng] match/program granularity
Alex
mysqlstudent at gmail.com
Sat Apr 10 23:22:18 CEST 2010
Hi,
I'm using an older version of syslog-ng for now, until I can upgrade
to post-3.0, but for the time-being I'd like to be able to use the
match() and program() qualifiers to redirect output from bind to a
specific file, from the local host as well as from remote hosts using
local3.info.
Where can I find the documentation that describes the differences in
usage for match() and program()? In the following line, what is
considered "program" and what is considered "match"? How does this
change if the line is from a remote host?
Apr 10 17:16:15 smtp01 postfix/cleanup[23834]: 1F3BBE74004:
message-id=<20103410231614.1F3BBE74004 at smtp01.myhost.com>
Can I match on hostname? Are there other parameters that might be
helpful in classifying this information?
Thanks,
Alex
More information about the syslog-ng
mailing list