Hi,
I try use syslog-ng to cut out some annoying messages from our message file. The check_mk nagios client is polling every 5 minutes. So the user root su to nagios and
this is reported in /var/log/messages. I create a filter to move the messages to /var/log/su/nagios
My problem now is that the messages are reported in both files.
Does anyone can tell me what I have to change that these massages only will stored in the /var/log/su/nagios file.
Aditional question: Why SLES is using syslog-ng in version 1.x does it make sense to upgrate to syslog-ng V3 ?
On 13/11/2012 07:54, tbrinkmann wrote:
[color=blue]
I try use syslog-ng to cut out some annoying messages from our message
file. The check_mk nagios client is polling every 5 minutes. So the user
root su to nagios and
this is reported in /var/log/messages. I create a filter to move the
messages to /var/log/su/nagios
My problem now is that the messages are reported in both files.
Does anyone can tell me what I have to change that these massages only
will stored in the /var/log/su/nagios file.[/color]
You need to edit the f_messages filter to add ‘and not filter(f_su)’
before the first semi-colon at the end of the filter line (so before ‘;
};’).
HTH.
Simon
Novell/SUSE/NetIQ Knowledge Partner
Do you work with Novell technologies at a university, college or school?
If so, your campus could benefit from joining the Novell Technology
Transfer Partner (TTP) program. See TTP Organization | Micro Focus for more details.