[syslog-ng] Pattern Matching Issues
Peter Mills
pmills at imtechtelecom.com
Thu Sep 16 13:21:35 CEST 2010
Thanks it's working now!
1,HOST IP 192.168.61.202,- - WXC-192.168.61.202 register 1102
[wx-event at juniper.net eventtime="1284635779" metric="Primary Reg Server
Unreachable" sev="major" type="sys"] REG: Self registration failed.
IP=192.168.61.242.
#Check pattern matching
destination df_udp_pattern_output {
file("/var/log/pattern_output"
template("$PROGRAM,HOST IP ${.wxc.host_ip},$MSG\n")
template_escape(no));
};
nagios at nagios-collector:/opt/syslog-ng/var/db/patterns/v1$ cat test.xml
<?xml version="1.0" encoding="utf-8"?>
<patterndb version="1" pub_date="2009-04-17">
<program name="1">
<pattern>wxc</pattern>
<rule id="1" class="system">
<pattern>- - WXC- at IPv4:.wxc.host_ip@ @STRING:.wxc.process@
@NUMBER:.wxc.pid@ @QSTRING:.wxc.bracket:[]@ @STRING:.wxc.body@</pattern>
</rule>
</program>
</patterndb>
nagios at nagios-collector:/opt/syslog-ng/var/db/patterns/v1$
-----Original Message-----
From: syslog-ng-bounces at lists.balabit.hu
[mailto:syslog-ng-bounces at lists.balabit.hu] On Behalf Of Matthew Hall
Sent: 16 September 2010 10:45
To: Syslog-ng users' and developers' mailing list
Cc: Sam Moore
Subject: Re: [syslog-ng] Pattern Matching Issues
On Thu, Sep 16, 2010 at 10:36:06AM +0100, Peter Mills wrote:
>
> Matthew,
>
> No particular requirement: Using Ubuntu and managed to come across a
> Debian package for this release.
>
> Which release do you suggest and where do I obtain a suitable package?
I would suggest 3.1 or up.
There are debs on the Balabit site.
http://www.balabit.com/downloads/files?path=/syslog-ng/open-source-editi
on/3.1.2/setups
3.1.2 latest version is in debian unstable
http://packages.debian.org/search?keywords=syslog-ng&searchon=names&suit
e=unstable§ion=all
for some reason only 2.0.9 seems to be in Ubuntu. EGADS!
> Thanks
> Peter
Matthew.
________________________________________________________________________
______
Member info: https://lists.balabit.hu/mailman/listinfo/syslog-ng
Documentation:
http://www.balabit.com/support/documentation/?product=syslog-ng
FAQ: http://www.campin.net/syslog-ng/faq.html
______________________________________________________________________
This email has been scanned by the MessageLabs Email Security System.
For more information please visit http://www.messagelabs.com/email
______________________________________________________________________
Imtech Telecom Global is a limited company registered in England and Wales. Registered number: GB04407184. Registered office: Viables 3, Jays Close, Basingstoke, Hampshire, RG22 4BS.
______________________________________________________________________
This email has been scanned by the MessageLabs Email Security System.
For more information please visit http://www.messagelabs.com/email
______________________________________________________________________
More information about the syslog-ng
mailing list