And to know if it's information, a warning or an error is also helpfull :-)
So the destination in syslog-ng config now looks like:
destination d_jffnms {
pipe ("/tmp/mysql.pipe"
template("INSERT INTO syslog (date, date_logged, host,
message)
VALUES ('$YEAR-$MONTH-$DAY
We are using evtsys (http://code.google.com/p/eventlog-to-syslog/) to send
the windows events to jffnms.
Found that we lost the source in the events.
Had to change the destination in syslog-ng config to:
destination d_jffnms {
pipe ("/tmp/mysql.pipe"
template("INSERT INTO
On Tue, Jun 11, 2013 at 01:39:55PM +, Ruud Hop wrote:
> And voila, the messages are appearing in the database :-)
>
> Thanks for pointing me in the right direction, I'm still in the Linux
> learning phase :-)
Can you send me the relevant parts of your config direct? Remove/reset
the passwords
Craig,
I changed the syslog-ng configuration to
destination d_jffnms {
pipe ("/tmp/mysql.pipe"
template("INSERT INTO syslog (date, date_logged, host, message)
VALUES ('$YEAR-$MONTH-$DAY $HOUR:$MIN:$SEC', NOW\(\), '$FULLHOST', '$MSG');
\n")
template-escape(yes));
};
And s
Craig Small writes:
>
> On Fri, Jun 07, 2013 at 07:56:13AM +, Ruud Hop wrote:
> > and everything (local machine and remote machine) is logging to this
file.
> > Now how to get this logging into mysql?
> I had another look at it.
> Is the pipe file being made? you have to run mkfifo
>
> You
On Fri, Jun 07, 2013 at 07:56:13AM +, Ruud Hop wrote:
> and everything (local machine and remote machine) is logging to this file.
> Now how to get this logging into mysql?
I had another look at it.
Is the pipe file being made? you have to run mkfifo
You can also run the mysql client on the co
On Fri, Jun 07, 2013 at 07:56:13AM +, Ruud Hop wrote:
> and everything (local machine and remote machine) is logging to this file.
> Now how to get this logging into mysql?
OK, so the filter bit is working ok.
It all looks ok, have you tried either cating the pipe to see stuff
going to it, or r
Craig Small writes:
>
> First of all, try to get local logging working, that way you cut down
> the number of variables. I would also try to send the messages to a
> normal log file.
>
> Are you also sure the remote device is sending messages using local6?
>
> - Craig
Hi Craig,
I had the fi
On Thu, Jun 06, 2013 at 01:10:39PM +, Ruud Hop wrote:
> I'm trying to install jffnms on Ubuntu and getting there step by step :-).
> JFFNMS is working, but I can't get events in the database.
> I have installed syslog-ng and configured it using the example:
First of all, try to get local loggin
Hi all,
I'm trying to install jffnms on Ubuntu and getting there step by step :-).
JFFNMS is working, but I can't get events in the database.
I have installed syslog-ng and configured it using the example:
@version: 3.3
@include "scl.conf"
# Syslog-ng configuration file, compatible with default
10 matches
Mail list logo
