syslog-ng

I'm running syslog-ng and want to trap specifc info coming from a remote
machine into it's own file instead of into /var/log/messsages. asically
the info is coming from my router, a Watchguard Soho6 and is going to
messages right now, I just want syslog-ng to put that info into it's own
file. Below is a sample of the info coming in.

May 27 14:09:26 soho6 IP: ICMP type (3) code (3) received from
204.152.184.196 @2003-05-27-14:12:12

Thanks,
Shaun W. Grogan

-
To unsubscribe from this list: send the line "unsubscribe linux-admin" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html

Re: syslog-ng

Hi Shaun,

you have to include it in /etc/syslog.conf
something like:

routerservice /var/log/router.log



Shaun Grogan wrote:


> I'm running syslog-ng and want to trap specifc info coming from a remote
> machine into it's own file instead of into /var/log/messsages. asically
> the info is coming from my router, a Watchguard Soho6 and is going to
> messages right now, I just want syslog-ng to put that info into it's own
> file. Below is a sample of the info coming in.
>
> May 27 14:09:26 soho6 IP: ICMP type (3) code (3) received from
> 204.152.184.196 @2003-05-27-14:12:12
>
> Thanks,
> Shaun W. Grogan
>
> -
> To unsubscribe from this list: send the line "unsubscribe linux-admin" in
> the body of a message to majordomo@vger.kernel.org
> More majordomo info at http://vger.kernel.org/majordomo-info.html

-
To unsubscribe from this list: send the line "unsubscribe linux-admin" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html

Re: syslog-ng

Sorry for being such a noob but here are the 2 lines I included in
syslog-ng.conf and never got it to work. What am I missing?


destination soho6 { file("/var/log/remote/soho6.log"); };
destination IP: { file("/var/log/remote/soho6.log"); };


On Thu, 2003-05-29 at 09:58, Luis Lain wrote:
> Hi Shaun,
>
> you have to include it in /etc/syslog.conf
> something like:
>
> routerservice /var/log/router.log
>
>
>
> Shaun Grogan wrote:
>
>
> > I'm running syslog-ng and want to trap specifc info coming from a remote
> > machine into it's own file instead of into /var/log/messsages. asically
> > the info is coming from my router, a Watchguard Soho6 and is going to
> > messages right now, I just want syslog-ng to put that info into it's own
> > file. Below is a sample of the info coming in.
> >
> > May 27 14:09:26 soho6 IP: ICMP type (3) code (3) received from
> > 204.152.184.196 @2003-05-27-14:12:12
> >
> > Thanks,
> > Shaun W. Grogan
> >
> > -
> > To unsubscribe from this list: send the line "unsubscribe linux-admin" in
> > the body of a message to majordomo@vger.kernel.org
> > More majordomo info at http://vger.kernel.org/majordomo-info.html
>
> -
> To unsubscribe from this list: send the line "unsubscribe linux-admin" in
> the body of a message to majordomo@vger.kernel.org
> More majordomo info at http://vger.kernel.org/majordomo-info.html

-
To unsubscribe from this list: send the line "unsubscribe linux-admin" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html