* [gentoo-user] syslog-ng facility
@ 2006-11-14 8:55 Arnau Bria
2006-11-14 12:04 ` Daniel Iliev
0 siblings, 1 reply; 3+ messages in thread
From: Arnau Bria @ 2006-11-14 8:55 UTC (permalink / raw
To: gentoo-user
Hi,
I've installed syslog-ng and I was configuring it.
I'd like to separate ssh and named logs from messages, so I thought
each of that services had a "facilty", so I defined them and restarted
syslog-ng, but it fails saying that it does not know those facilities...
#filter f_named { facility(named); };
#filter f_sshd { facility(sshd); };
I have testes with named, sshd, bind, ssh...
So, how may I separate this services logs?
I used metalog and there you can use reg expressions, may I use it here
too?
Where may I find a list of facilities?
Cheers!
--
Arnau Bria
http://blog.emergetux.net
Wiggum: Dispara a las ruedas Lou.
Lou: eee, es un tanque jefe.
Wiggum: Me tienes hartito con todas tus excusas.
--
gentoo-user@gentoo.org mailing list
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: [gentoo-user] syslog-ng facility
2006-11-14 8:55 [gentoo-user] syslog-ng facility Arnau Bria
@ 2006-11-14 12:04 ` Daniel Iliev
2006-11-14 12:16 ` Arnau Bria
0 siblings, 1 reply; 3+ messages in thread
From: Daniel Iliev @ 2006-11-14 12:04 UTC (permalink / raw
To: gentoo-user
Arnau Bria wrote:
> Hi,
>
> I've installed syslog-ng and I was configuring it.
> I'd like to separate ssh and named logs from messages, so I thought
> each of that services had a "facilty", so I defined them and restarted
> syslog-ng, but it fails saying that it does not know those facilities...
>
> #filter f_named { facility(named); };
> #filter f_sshd { facility(sshd); };
>
> I have testes with named, sshd, bind, ssh...
>
> So, how may I separate this services logs?
> I used metalog and there you can use reg expressions, may I use it here
> too?
>
> Where may I find a list of facilities?
>
>
> Cheers!
>
>
Yes, you can separate the logs.
Take a look at this example. I think it would be helpful.
http://ben.muppethouse.com/SYSLOG-DOC.html
--
Best regards,
Daniel
--
gentoo-user@gentoo.org mailing list
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: [gentoo-user] syslog-ng facility
2006-11-14 12:04 ` Daniel Iliev
@ 2006-11-14 12:16 ` Arnau Bria
0 siblings, 0 replies; 3+ messages in thread
From: Arnau Bria @ 2006-11-14 12:16 UTC (permalink / raw
To: gentoo-user
On Tue, 14 Nov 2006 14:04:00 +0200
Daniel Iliev wrote:
> Arnau Bria wrote:
Hi Daniel,
[...]
> > Where may I find a list of facilities?
> Yes, you can separate the logs.
> Take a look at this example. I think it would be helpful.
>
> http://ben.muppethouse.com/SYSLOG-DOC.html
I was looking for a list of facilities, cause I was wondering if named
and ssh were ones or not. I finally separated it with "program" filter
rule.
I finally found facility list in metalog man page:
Facility names are : "auth", "authpriv", "cron", "daemon", "ftp",
"kern", "lpr", "mail", "news", "security", "syslog", "user", "uucp",
"local0", "local1" ... "local7"
thanks for your reply.
--
Arnau Bria
http://blog.emergetux.net
Wiggum: Dispara a las ruedas Lou.
Lou: eee, es un tanque jefe.
Wiggum: Me tienes hartito con todas tus excusas.
--
gentoo-user@gentoo.org mailing list
^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2006-11-14 12:23 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2006-11-14 8:55 [gentoo-user] syslog-ng facility Arnau Bria
2006-11-14 12:04 ` Daniel Iliev
2006-11-14 12:16 ` Arnau Bria
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox