Date: Mon, 2 Jul 2001 19:43:48 +0100 From: David Malone <dwmalone@maths.tcd.ie> To: Rasputin <rara.rasputin@virgin.net> Cc: stable@freebsd.org Subject: Re: filtering syslog by remote host? Message-ID: <20010702194348.A26764@walton.maths.tcd.ie> In-Reply-To: <20010702155700.A18774@dogma.freebsd-uk.eu.org>; from rara.rasputin@virgin.net on Mon, Jul 02, 2001 at 03:57:00PM %2B0100 References: <20010702155700.A18774@dogma.freebsd-uk.eu.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, Jul 02, 2001 at 03:57:00PM +0100, Rasputin wrote: > > Hi there - wondered if BSD's native syslog could > filter events based on the orginating host? > > man syslog.conf seems to indicate it can, but I can't get it working. Last time I checked it, it worked OK, but I'm going to check again to be on the safe side. There is a gotcha though. The hostname you give in syslog.conf must match the name which shows up in the log file exactly. Usually this means the full host name, but if the remote machine and the machine logging the message are in the same domain then you must leave off the everything after the first dot. I'm going to try to make syslogd more helpful in this respect, but unfortunately the code which removes everything after the first dot is a long way from the code which does the comparison, so it may not be easy to fix. David. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010702194348.A26764>