# # /etc/syslog-ng/syslog-ng.conf # options { sync (0); time_reopen (10); log_fifo_size (1000); long_hostnames(off); use_dns (no); use_fqdn (no); create_dirs (yes); keep_hostname (yes); perm(0655); dir_perm(0755); group("log"); }; source s_sys { pipe ("/proc/kmsg" log_prefix("kernel: ")); unix-stream ("/dev/log"); internal(); }; source r_src { tcp(ip("0.0.0.0") port(514)); }; destination d_cons { file("/dev/console"); }; #destination d_mesg { file("/var/log/messages"); }; #destination d_auth { file("/var/log/secure"); }; #destination d_mail { file("/var/log/maillog"); }; #destination d_spol { file("/var/log/spooler"); }; #destination d_boot { file("/var/log/boot.log"); }; #destination d_cron { file("/var/log/cron"); }; destination d_mlal { usertty("*"); }; #destination d_kernel { file("/var/log/kern"); }; destination d_remote {tcp("127.0.0.1" port(514)) ;} ; destination dr_cons { file("/dev/console"); }; destination dr_mesg { file("/var/log/$YEAR-$MONTH-$DAY/$HOST/messages"); }; destination dr_auth { file("/var/log/$YEAR-$MONTH-$DAY/$HOST/secure"); }; destination dr_mail { file("/var/log/$YEAR-$MONTH-$DAY/$HOST/maillog"); }; destination dr_spol { file("/var/log/$YEAR-$MONTH-$DAY/$HOST/spooler"); }; #destination dr_boot { file("/var/log/$YEAR-$MONTH-$DAY/$HOST/boot.log"); }; destination dr_cron { file("/var/log/$YEAR-$MONTH-$DAY/$HOST/cron"); }; destination dr_acpid { file("/var/log/$YEAR-$MONTH-$DAY/$HOST/acpid"); }; destination dr_lighttpd { file("/var/log/$YEAR-$MONTH-$DAY/$HOST/lighttpd_access.log"); }; destination dr_lighttpd_error { file("/var/log/$YEAR-$MONTH-$DAY/$HOST/lighttpd_error.log"); }; destination dr_dnsmasq { file("/var/log/$YEAR-$MONTH-$DAY/$HOST/dnsmasq"); }; destination dr_local0 { file("/var/log/$YEAR-$MONTH-$DAY/$HOST/local0"); }; destination dr_local1 { file("/var/log/$YEAR-$MONTH-$DAY/$HOST/local1"); }; destination dr_local2 { file("/var/log/$YEAR-$MONTH-$DAY/$HOST/local2"); }; destination dr_local3 { file("/var/log/$YEAR-$MONTH-$DAY/$HOST/local3"); }; destination dr_local4 { file("/var/log/$YEAR-$MONTH-$DAY/$HOST/local4"); }; destination dr_local5 { file("/var/log/$YEAR-$MONTH-$DAY/$HOST/ncidd.log"); }; destination dr_local6 { file("/var/log/$YEAR-$MONTH-$DAY/$HOST/mythfrontend.log"); }; destination dr_local7 { file("/var/log/$YEAR-$MONTH-$DAY/$HOST/mythbackend.log"); }; destination dr_mlal { usertty("*"); }; destination dr_kernel { file("/var/log/$YEAR-$MONTH-$DAY/$HOST/kern"); }; destination dr_everything { file("/var/log/$YEAR-$MONTH-$DAY/$HOST/everything"); }; filter f_filter1 { facility(kern); }; filter f_filter2 { level(info) and not (facility(mail) or facility(authpriv) or facility(local6) or facility(local7) or program(lighttpd) or facility(cron) or program("kernel")); }; filter f_filter3 { facility(authpriv); }; filter f_filter4 { facility(mail); }; filter f_filter5 { level(emerg); }; filter f_filter6 { facility(uucp) or (facility(news) and level(crit)); }; #filter f_filter7 { facility(local7); }; filter f_filter8 { facility(cron); }; #filter f_local0 { facility(local0); }; #filter f_local1 { facility(local1); }; #filter f_local2 { facility(local2); }; #filter f_local3 { facility(local3); }; filter f_local4 { facility(local4); }; filter f_local5 { facility(local5); }; filter f_local6 { facility(local6); }; filter f_local7 { facility(local7); }; filter f_kernel { level(info) and program("kernel") and not program(lighttpd); }; filter f_acpid { match("acpid") and not ( facility(syslog) or program(lighttpd) ) ; }; filter f_lighttpd { match("lighttpd") and not facility(syslog) ; }; filter f_lighttpd_error { match("lighttpd") and level(error) and not facility(syslog) ; }; filter f_dnsmasq { match("dnsmasq") and not (facility(syslog)or program(lighttpd)); }; filter f_everything { level(debug..emerg) and not (facility(auth,authpriv,syslog) or program(lighttpd)); }; #log { source(s_sys); filter(f_filter1); destination(d_cons); }; ####log { source(s_sys); filter(f_filter2); destination(d_mesg); }; #log { source(s_sys); filter(f_filter3); destination(d_auth); }; #log { source(s_sys); filter(f_filter4); destination(d_mail); }; #log { source(s_sys); filter(f_filter5); destination(d_mlal); }; #log { source(s_sys); filter(f_filter6); destination(d_spol); }; ####log { source(s_sys); filter(f_filter7); destination(d_boot); }; #log { source(s_sys); filter(f_filter8); destination(d_cron); }; ####log { source(s_sys); filter(f_kernel); destination(d_kernel); }; # ##log { source(r_src); filter(f_filter1); destination(dr_cons); }; log { source(r_src); filter(f_filter2); destination(dr_mesg); }; log { source(r_src); filter(f_filter3); destination(dr_auth); }; log { source(r_src); filter(f_filter4); destination(dr_mail); }; log { source(r_src); filter(f_filter5); destination(dr_mlal); }; log { source(r_src); filter(f_filter6); destination(dr_spol); }; #log { source(r_src); filter(f_filter7); destination(dr_boot); }; log { source(r_src); filter(f_filter8); destination(dr_cron); }; #log { source(r_src); filter(f_local0); destination(dr_local0); }; #log { source(r_src); filter(f_local1); destination(dr_local1); }; #log { source(r_src); filter(f_local2); destination(dr_local2); }; #log { source(r_src); filter(f_local3); destination(dr_local3); }; log { source(r_src); filter(f_local4); destination(dr_local4); }; log { source(r_src); filter(f_local5); destination(dr_local5); }; log { source(r_src); filter(f_local6); destination(dr_local6); }; log { source(r_src); filter(f_local7); destination(dr_local7); }; log { source(r_src); filter(f_kernel); destination(dr_kernel); }; log { source(r_src); filter(f_acpid); destination(dr_acpid); }; log { source(r_src); filter(f_dnsmasq); destination(dr_dnsmasq); }; log { source(r_src); filter(f_lighttpd); destination(dr_lighttpd); }; log { source(r_src); filter(f_lighttpd_error); destination(dr_lighttpd_error); }; log { source(r_src); filter(f_everything); destination(dr_everything); }; log { source(s_sys); destination (d_remote); }; # ## vim: syntax=syslog-ng