[syslog-ng] Create Pattern-DB rules
Fabien Wernli
wernli at in2p3.fr
Thu Oct 2 09:26:44 CEST 2014
Hi,
On Wed, Oct 01, 2014 at 10:48:44PM -0400, Justin Kala wrote:
> my syslog-ng server (Syslog-ng OSE 3.0.4), this came default with SOLARIS
> OS..
> is not using patterndb.xml db_parser i configured in syslog-ng.conf. I
> chopped off the message id content and the actual message is sent to
> pattern-db parser but all the macro values that are referred from here are
> not getting populated in the final log
Can you elaborate on the nature of "the final log"?
If you're simply using a file destination with default template, you won't
see any of the macros, as by default only $DATE, $HOST, $PROGRAM, $PID and
$MSG are shown. You need to explicitly do that in the template format.
More information about the syslog-ng
mailing list