[syslog-ng] Regex Solaris from Linux hosts in Syslog-ng config file

Evan Rempel erempel at uvic.ca
Thu Oct 29 20:25:55 CET 2015 

You could use a second interface on the syslog servers and configure the solaris servers to use this alternate IP address.
You could also use a different port.
Then you could tag the source with "solaris" and then use the tag filtering to separate those message out of the mix.

Just my $0.02

On 10/29/2015 12:22 PM, vijay amruth wrote:
> Thank you fo rthe reply Balazs.
>
> Can we use filter functions like this below ?
>
> filter f_solaris {
>         host('uname == solaris') }
>
> My idea is to identify solaris servers.
>
> Thanks all,
> ~Vj
>
> On Thu, Oct 29, 2015 at 12:59 AM, Balazs Scheidler <bazsi77 at gmail.com <mailto:bazsi77 at gmail.com>> wrote:
>
>     Well, probably the only sensible way is to filter based on IP addresses.
>
>     On Oct 29, 2015 6:09 AM, "vijay amruth" <vijayamruth at gmail.com <mailto:vijayamruth at gmail.com>> wrote:
>
>         Hello All,
>
>         We are drawing logs from several hosts which include solaris(10,11) , linux (centos, ubuntu, rhel) into syslog servers, I want to be able to separate solaris logs, is there any pattern we can match for solaris logs that you may know ?
>
>         Thanks,
>         Vijay Amrut.
>
>         ______________________________________________________________________________
>         Member info: https://lists.balabit.hu/mailman/listinfo/syslog-ng
>         Documentation: http://www.balabit.com/support/documentation/?product=syslog-ng
>         FAQ: http://www.balabit.com/wiki/syslog-ng-faq
>
>
>
>     ______________________________________________________________________________
>     Member info: https://lists.balabit.hu/mailman/listinfo/syslog-ng
>     Documentation: http://www.balabit.com/support/documentation/?product=syslog-ng
>     FAQ: http://www.balabit.com/wiki/syslog-ng-faq
>
>
>
>
>
> -- 
> Thanks,
> Vijay Amrut.
>

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.balabit.hu/pipermail/syslog-ng/attachments/20151029/16b8674f/attachment.htm

More information about the syslog-ng mailing list