[syslog-ng] match/program granularity
Alex
mysqlstudent at gmail.com
Sun Apr 11 23:27:06 CEST 2010
>> Can I match on hostname? Are there other parameters that might be
>> helpful in classifying this information?
>
> in syslog-ng 2.1 and below:
>
> $MSG contains everything starting from 'postfix/cleanup[23834] ..'
> $PROGRAM contains "postfix/cleanup"
> $PID contains 23834
How do these variables relate to syslog-ng.conf? IOW, I have been using:
filter f_myhost { match("smtp02"); };
filter f_myprogram { program("postfix") };
filter f_named { program("named") and facility(local3); };
Is this the right way to do it?
Thanks,
Alex
More information about the syslog-ng
mailing list