API tools faq
paste
Advertisement
GTAXL

Untitled

GTAXL
Dec 23rd, 2016
197
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 3.20 KB | None | 0 0
raw download clone embed print report
  1. root@jetstream:/etc# cat rsyslog.conf
  2. # For more information see /usr/share/doc/rsyslog-*/rsyslog_conf.html
  3. # If you experience problems, see http://www.rsyslog.com/doc/troubleshoot.html
  4.  
  5. #### MODULES ####
  6.  
  7. $ModLoad imuxsock # provides support for local system logging (e.g. via logger command)
  8. $ModLoad imklog # provides kernel logging support (previously done by rklogd)
  9. #$ModLoad immark # provides --MARK-- message capability
  10.  
  11. # Provides UDP syslog reception
  12. $ModLoad imudp
  13. $UDPServerRun 514
  14.  
  15. # Provides TCP syslog reception
  16. $ModLoad imtcp
  17. $InputTCPServerRun 514
  18.  
  19. #### GLOBAL DIRECTIVES ####
  20.  
  21. # Use default timestamp format
  22. $ActionFileDefaultTemplate RSYSLOG_TraditionalFileFormat
  23.  
  24. # File syncing capability is disabled by default. This feature is usually not required,
  25. # not useful and an extreme performance hit
  26. #$ActionFileEnableSync on
  27.  
  28. # Include all config files in /etc/rsyslog.d/
  29. $IncludeConfig /etc/rsyslog.d/*.conf
  30.  
  31.  
  32. #### RULES ####
  33.  
  34. # Log all kernel messages to the console.
  35. # Logging much else clutters up the screen.
  36. #kern.* /dev/console
  37.  
  38. # Log anything (except mail) of level info or higher.
  39. # Don't log private authentication messages!
  40. *.info;mail.none;authpriv.none;cron.none /var/log/messages
  41.  
  42. # The authpriv file has restricted access.
  43. authpriv.* /var/log/secure
  44.  
  45. # Log all the mail messages in one place.
  46. mail.* -/var/log/maillog
  47.  
  48.  
  49. # Log cron stuff
  50. cron.* /var/log/cron
  51.  
  52. # Everybody gets emergency messages
  53. *.emerg *
  54.  
  55. # Save news errors of level crit and higher in a special file.
  56. uucp,news.crit /var/log/spooler
  57.  
  58. # Save boot messages also to boot.log
  59. local7.* /var/log/boot.log
  60.  
  61.  
  62. # ### begin forwarding rule ###
  63. # The statement between the begin ... end define a SINGLE forwarding
  64. # rule. They belong together, do NOT split them. If you create multiple
  65. # forwarding rules, duplicate the whole block!
  66. # Remote Logging (we use TCP for reliable delivery)
  67. #
  68. # An on-disk queue is created for this action. If the remote host is
  69. # down, messages are spooled to disk and sent when it is up again.
  70. #$WorkDirectory /var/lib/rsyslog # where to place spool files
  71. #$ActionQueueFileName fwdRule1 # unique name prefix for spool files
  72. #$ActionQueueMaxDiskSpace 1g # 1gb space limit (use as much as possible)
  73. #$ActionQueueSaveOnShutdown on # save messages to disk on shutdown
  74. #$ActionQueueType LinkedList # run asynchronously
  75. #$ActionResumeRetryCount -1 # infinite retries if host is down
  76. # remote host is: name/ip:port, e.g. 192.168.0.1:514, port optional
  77. #*.* @@remote-host:514
  78. # ### end of the forwarding rule ###
  79.  
  80. $AllowedSender TCP, 10.0.0.1
  81. $AllowedSender TCP, 10.0.0.2
  82. $AllowedSender TCP, 10.0.0.3
  83.  
  84. :fromhost-ip,isequal,"10.0.0.1" /home/fw/pfsense.log
  85. :fromhost-ip,isequal,"10.0.0.2" /home/fw/ubiquiti.log
  86. :fromhost-ip,isequal,"10.0.0.3" /home/fw/ubiquiti.log
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!