[syslog-ng] cisco/squid feedback
Alexander Clouter
alex at digriz.org.uk
Mon Mar 7 12:35:11 CET 2011
Hi,
Digging around, I could not find anything on how to 'sensibly' log the
junk that Cisco IOS devices (and their infernal WLC) spit out plus I was
keen to rewrite squid HTTP proxy server logs to make use of the
epoch+msec timestamp found in the MSG.
I have documented, very roughly, my current solution on my website and
would welcome amendments/fixes/flames/etc on the approach:
http://www.digriz.org.uk/syslog-ng-integration
Before you ask, I use 'match("fqdn.example.com" value("HOST_FROM") ...)'
as netmask() is broken for IPv6 :)
Cheers
--
Alexander Clouter
.sigmonster says: When pleasure remains, does it remain a pleasure?
More information about the syslog-ng
mailing list