[syslog-ng] syslog-ng - Apache Logging
Steven Shepherd
netdudefl at yahoo.com
Tue Jan 25 21:55:06 CET 2011
I have Apache logging working via a named pipe, however the log looks like:
Jan 25 14:44:13 $HOSTNAME $VIRTUAL_HOST: 000.000.000.000 - -
[25/Jan/2011:14:44:13 -0600] "GET /foo.html HTTP/1.0" 200 24040 "-" "Wget/1.10.2
(Red Hat modified)"
I want to strip the syslog timestamp and $HOSTNAME. However, if I use
"template("$MSGONLY\n")", it strips the timestamp, hostname *and* the
$virtual_host (obtained from including "%V" in LogFormat and using 'vcommon' on
apache server).
Any ideas on how to remove the syslog data but leave the vhost data in place?
Cheers!
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.balabit.hu/pipermail/syslog-ng/attachments/20110125/aca38c48/attachment.htm
More information about the syslog-ng
mailing list