| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124 |
- #
- # /etc/rsyslog.conf Configuration file for rsyslog v3. (Salt managed)
- #
- # For more information see
- # /usr/share/doc/rsyslog-doc/html/rsyslog_conf.html
- #################
- #### MODULES ####
- #################
- $ModLoad imuxsock # provides support for local system logging
- $ModLoad imklog # provides kernel logging support (previously done by rklogd)
- #$ModLoad immark # provides --MARK-- message capability
- # provides UDP syslog reception
- #$ModLoad imudp
- #$UDPServerRun 514
- # provides TCP syslog reception
- #$ModLoad imtcp
- #$InputTCPServerRun 514
- ###########################
- #### GLOBAL DIRECTIVES ####
- ###########################
- #
- # Use default timestamp format.
- # To enable high precision timestamps, comment out the following line.
- #
- $ActionFileDefaultTemplate RSYSLOG_TraditionalFileFormat
- #
- # Set the default permissions for all log files.
- #
- $FileOwner root
- $FileGroup adm
- $FileCreateMode 0640
- #
- # Include all config files in /etc/rsyslog-early.d/
- #
- $IncludeConfig /etc/rsyslog-early.d/*.conf
- # Mirror all remaining logs to logserver
- *.* @10.132.251.43
- #
- # Include all config files in /etc/rsyslog.d/
- #
- $IncludeConfig /etc/rsyslog.d/*.conf
- ###############
- #### RULES ####
- ###############
- #
- # First some standard log files. Log by facility.
- #
- auth,authpriv.* /var/log/auth.log
- *.*;auth,authpriv.none -/var/log/syslog
- #cron.* /var/log/cron.log
- daemon.* -/var/log/daemon.log
- kern.* -/var/log/kern.log
- lpr.* -/var/log/lpr.log
- mail.* -/var/log/mail.log
- user.* -/var/log/user.log
- #
- # Logging for the mail system. Split it up so that
- # it is easy to write scripts to parse these files.
- #
- mail.info -/var/log/mail.info
- mail.warn -/var/log/mail.warn
- mail.err /var/log/mail.err
- #
- # Logging for INN news system.
- #
- news.crit /var/log/news/news.crit
- news.err /var/log/news/news.err
- news.notice -/var/log/news/news.notice
- #
- # Some "catch-all" log files.
- #
- *.=debug;\
- auth,authpriv.none;\
- news.none;mail.none -/var/log/debug
- *.=info;*.=notice;*.=warn;\
- auth,authpriv.none;\
- cron,daemon.none;\
- mail,news.none -/var/log/messages
- #
- # Emergencies are sent to everybody logged in.
- #
- *.emerg :omusrmsg:*
- #
- # I like to have messages displayed on the console, but only on a virtual
- # console I usually leave idle.
- #
- #daemon,mail.*;\
- # news.=crit;news.=err;news.=notice;\
- # *.=debug;*.=info;\
- # *.=notice;*.=warn /dev/tty8
- # The named pipe /dev/xconsole is for the `xconsole' utility. To use it,
- # you must invoke `xconsole' with the `-file' option:
- #
- # $ xconsole -file /dev/xconsole [...]
- #
- # NOTE: adjust the list below, or you'll go crazy if you have a reasonably
- # busy site..
- #
- daemon.*;mail.*;\
- news.err;\
- *.=debug;*.=info;\
- *.=notice;*.=warn |/dev/xconsole
|
