Syslog-ng 配置与使用全解析
1. Syslog-ng 配置基础
Syslog-ng 的配置相较于传统 syslog 更为复杂,但这也赋予了它更高的灵活性。其默认配置文件名为syslog-ng.conf,位于/etc/syslog-ng/目录下。下面是一个简单的syslog-ng.conf文件示例:
# Simple syslog-ng.conf file. options { use_fqdn(no); sync(0); }; source s_sys { unix-stream("/dev/log"); internal( ); }; source s_net { udp( ); }; destination d_security { file("/var/log/security"); }; destination d_messages { file("/var/log/messages"); }; destination d_console { usertty("root"); }; filter f_authpriv { facility(auth, authpriv); }; filter f_messages { level(info .. emerg) and not facility(auth, authpriv); }; filter f_emergency { level(emerg); }; log { source(s_sys); filter(f_authp