[syslog-ng] Setting and using variables
Faine, Mark R. (MSFC-IS40)[NICS]
mark.faine at nasa.gov
Fri Mar 22 13:37:29 UTC 2019
Is there a way to set variables in syslog-ng?
I have a log path with about 20 if/else branches and each one does a unnamed destination for that branch:
log {
source(pan_splunk);
if ( tags('mytag') ) {
destination {
file("/var/log/remote/backup/$HOST/asa/${HOST}_asa.log"
create-dirs(yes) dir-owner("splunk") dir-group("splunk") dir-perm(0750));
};
} elif ( message('something else') ) {
destination {
file("/var/log/remote/backup/$HOST/pubfw/${HOST}_pubfw.log"
create-dirs(yes) dir-owner("splunk") dir-group("splunk") dir-perm(0750));
};
} elif {
filter { message('foo') or
message('bar') or
message('baz') or
...
I'd need to introduce another directory level as a variable and I'd also like to change an existing part of the path to a variable so that then I could then do something like this:
if ( tags('mytag') ) {
app = asa
location = msfc
elif
...
and at the end I could then just do a single destination that had a file path with the variables
file("/var/log/remote/backup/$location/$HOST/$app/${HOST}_$app.log"
Thanks,
-Mark
More information about the syslog-ng
mailing list