[syslog-ng] Hosts before DNS
Jim Hendrick
james.r.hendrick at gmail.com
Mon Aug 13 18:37:38 UTC 2018
I have used HOST_FROM to get the IP of the sending server. Might help and
it saves a name lookup.
Jim
On Mon, Aug 13, 2018, 2:24 PM Oleg <olegr06 at gmail.com> wrote:
> I am using the latest version of ose ng, and have an issue I am trying to
> resolve. We have hosts that resolve to multiple names via round robin
> dns. So ng is capturing logs from all of those, depending on how it was
> resolved during during the connection. For those types of hosts, I would
> like to configure ng to use hosts first, and fall back to dns resolution.
> Tried different combinations of configs, but it does not work this way.
> It either uses the hosts, or it does dns lookup. Thanks in advance for any
> tips on resolving this.
>
> Example:
> 10.0.0.1 resolve to www, app1, ftp
> I want to call it webserver in /etc/hosts, and if the entry matches, ng
> would just use that name.
> right now it creates 3 separate log files for the same host based on the
> name it's able to resolve at lookup.
>
> ______________________________________________________________________________
> Member info: https://lists.balabit.hu/mailman/listinfo/syslog-ng
> Documentation:
> http://www.balabit.com/support/documentation/?product=syslog-ng
> FAQ: http://www.balabit.com/wiki/syslog-ng-faq
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.balabit.hu/pipermail/syslog-ng/attachments/20180813/cdcf49b7/attachment.html>
More information about the syslog-ng
mailing list