The syslog-ng 3.0 Administrator Guide

Document version: Tenth
Release date: January 8, 2010
Latest version available at the BalaBit Documentation Page

3.15. Configuring syslog-ng clients

To configure syslog-ng on a client host, complete the following steps:

Procedure 3.5. Configuring syslog-ng on client hosts

  1. Install the syslog-ng application on the host. See Chapter 4, Installing syslog-ng for details installing syslog-ng on specific operating systems.

  2. Configure the local sources that collect the log messages of the host.

  3. Create a network destination that points directly to the syslog-ng server, or to a local relay.

  4. Create a log statement connecting the local sources to the syslog-ng server or relay.

  5. If the logs will also be stored locally on the host, create local file destinations.

  6. Create a log statement connecting the local sources to the file destination.

  7. Set filters and options (e.g., TLS encryption) as necessary.

[Example] Example 3.52. A simple configuration for clients

The following is a simple configuration file that collects local log messages and forwards them to a logserver using the IETF-syslog protocol.

@version:3.0
               
options { 
            mark_freq(30);
        };
                
source s_local { unix-stream("/dev/log"); internal(); };
 
destination d_syslog_tcp {
             syslog("192.168.1.1" transport("tcp") port(2010));
        };
                
log { source(s_local);destination(d_syslog_tcp); };

© 2007-2008 BalaBit IT Security
Please send your comments or documentation bugs to: documentation@balabit.com

Prev  Up  Next
3.14. Mutual authentication using TLS  Home | Contents  3.16. Configuring syslog-ng relays