[syslog-ng] squid access.log to syslog-ng - how?
victorsugo
victorsugo at protonmail.com
Tue Oct 6 11:19:30 UTC 2020
Hi,
I'd like to send all of my squid proxy's log to a syslog-ng server.
But it doesn't work as I want, because when syslog-ng parses the lines from access.log, it interprets the first field (actually UTC timestamp) as a program.
(I get the timestamp value in the PROGRAM field).
But... if I put an rsyslog (installed locally on squid's container) between the squid and syslog-ng servers, I can get correct results.
Could you help me, how can I omit the rsyslog from the logging and get a usable log?
Is there a standard way to do it? Or do I need to create an own template in squid.conf for this log?
regards,
Victor
--------------------- What's the vector Victor? :) ---------------------------------------------------
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.balabit.hu/pipermail/syslog-ng/attachments/20201006/964f79f2/attachment.html>
More information about the syslog-ng
mailing list