LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Security (https://www.linuxquestions.org/questions/linux-security-4/)
-   -   <Syslog-ng>What's source do I need? (https://www.linuxquestions.org/questions/linux-security-4/syslog-ng-whats-source-do-i-need-4175518191/)

Kazuki Ohya 09-10-2014 11:43 PM

<Syslog-ng>What's source do I need?
 
I use SUSE Linux Enterprise Server 11 (x86_64) version 11.

I want to transfer syslog to another server(it uses kiwi) with syslog-ng.

I configure syslog-ng.conf, but no syslog is transfered to another server.

I guess I miss enough source configuration.
I set source;
---------------------------------------------------------------------------
source src {
#
# include internal syslog-ng messages
# note: the internal() soure is required!
#
internal();

#
# the default log socket for local logging:
#
unix-dgram("/dev/log");

#
# uncomment to process log messages from network:
#
#udp(ip("0.0.0.0") port(514));
};
---------------------------------------------------------------------------

Do I need more source configuration?

Thanks in advanced.
Best regard,
Kazuki

unSpawn 09-11-2014 01:57 AM

SLES 11 comes with Syslog-NG so like any other major Linux distribution it should come with a working configuration for local logging out of the box. Your code snippet doesn't even have a destination set so, with all due respect first read the manual page, the Syslog-NG documentation Novel and Balabit provide, use the existing configuration and modify that and then post your proposed config please.


All times are GMT -5. The time now is 08:51 PM.