Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision Next revisionBoth sides next revision | ||
| docs:user-guide:services:log.syslog-ng3 [2018/02/17 19:28] – ↷ Page moved from doc:howto:log.syslog-ng3 to docs:user-guide:services:log.syslog-ng3 bobafetthotmail | docs:guide-user:perf_and_log:log.syslog-ng3 [2018/09/18 18:15] – [Replacing Default Logging with syslog-ng -- 2018] jeff | ||
|---|---|---|---|
| Line 1: | Line 1: | ||
| - | ====== syslog-ng3 ====== | + | ====== syslog-ng ====== |
| ===== Installation ===== | ===== Installation ===== | ||
| + | |||
| + | |||
| + | ==== Replacing Default Logging with syslog-ng -- 2018 ==== | ||
| + | |||
| + | |||
| + | As of March, 2018, https:// | ||
| + | |||
| + | As of July, 2018, version 3.16 is being supplied. Restart of '' | ||
| + | |||
| + | WARNING: Configuration file format is too old, syslog-ng is running in compatibility mode. | ||
| + | Please update it to use the syslog-ng 3.16 format at your time of convenience. | ||
| + | To upgrade the configuration, | ||
| + | and once completed change the @version header at the top of the configuration file.; | ||
| + | |||
| + | |||
| + | On '' | ||
| + | * Install '' | ||
| + | * Disable the default logging with ''/ | ||
| + | * Confirm that '' | ||
| + | * reboot | ||
| + | |||
| + | |||
| + | ---- | ||
| + | |||
| + | |||
| + | FIXME Much of the following appears to be from Backfire, c. 2011 | ||
| < | < | ||
| Line 19: | Line 45: | ||
| Configuration is controlled by ''/ | Configuration is controlled by ''/ | ||
| - | Below is a sample configuration for logging to a remote server via UDP (from http:// | + | Below is a sample configuration for logging to a remote server via TCP (extended |
| < | < | ||
| + | @version: | ||
| options { | options { | ||
| - | | + | |
| - | sync(0); | + | |
| - | stats(0); | + | flush_lines(0); |
| + | | ||
| + | log_fifo_size(256); | ||
| + | log_msg_size(8192); | ||
| + | stats_freq(0); | ||
| + | flush_lines(0); | ||
| + | use_fqdn(no); | ||
| + | # Do not add " | ||
| + | mark_freq(0); | ||
| + | }; | ||
| + | filter notice_or_higher { | ||
| + | level(notice..emerg) | ||
| + | }; | ||
| + | source src { | ||
| + | internal(); | ||
| + | unix-dgram("/ | ||
| + | }; | ||
| + | source kernel { | ||
| + | file("/ | ||
| + | }; | ||
| + | source net { | ||
| + | tcp(ip(0.0.0.0) port(514)); | ||
| + | }; | ||
| + | destination messages { | ||
| + | file("/ | ||
| + | }; | ||
| + | destination syslogd_tcp { | ||
| + | tcp(" | ||
| }; | }; | ||
| - | |||
| - | source src { unix-stream("/ | ||
| - | source kernel { file("/ | ||
| - | |||
| - | destination messages { file("/ | ||
| - | destination d_udp { udp(" | ||
| - | |||
| log { | log { | ||
| - | | + | |
| - | source(kernel); | + | source(kernel); |
| - | | + | |
| - | # | + | destination(messages); |
| + | destination(syslogd_tcp); | ||
| }; | }; | ||
| + | # put any customization files in this directory | ||
| + | @include "/ | ||
| </ | </ | ||