5.6.4. Customizing the timestamp used by the syslog-ng Agent

The syslog-ng 3.0 Administrator Guide Document version: Thirteenth Release date: September 23, 2010 Latest version available at the BalaBit Documentation Page
Previous \| Up \| Home \| Contents \| Index \| Glossary \| Next

5.6.4. Customizing the timestamp used by the syslog-ng Agent

The syslog-ng agent can send the syslog messages using either the ISO or the BSD timestamp format. It is recommended to use the ISO format, because it contains much more information than the BSD format.

Note that in the syslog-ng agent, the macros without prefix (e.g., DATE) always refer to the receiving date of the message (e.g., R_DATE) when it arrived into the event log container, and are included only for compatibility reasons.

	Warning
	If a remote host is logging into the event log of the local host that is running syslog-ng Agent for Windows, both hosts should be in the same timezone, because the event log message does not include the timezone information of the sender host. Otherwise, the date of the messages received from the remote host will be incorrect.

Prev	Up	Next
5.6. Customizing the message format	Home \| Contents	5.6.5. Macros available in the syslog-ng Agent

© 2007-2010 BalaBit IT Security
Please send your comments or documentation bugs to: documentation@balabit.com