Cacti插件syslog使用Syslog-ng收集日志
2018-05-13 20:23
323 查看
在Cacti上安装好syslog插件
安装开发版本的Syslog-ng安装YUM源:
Centos 6:
wget https://dl.fedoraproject.org/pub/epel/epel-release-latest-6.noarch.rpm
rpm -Uvh epel-release-latest-6.noarch.rpm
Centos 7:wget https://dl.fedoraproject.org/pub/epel/epel-release-latest-7.noarch.rpm
rpm -Uvh epel-release-latest-7.noarch.rpm
安装Syslog-ng及相关组件:
修改Syslog-ng配置文件(增加红色字体部分):@version:3.15
@include "scl.conf"
# syslog-ng configuration file.
#
# This should behave pretty much like the original syslog on RedHat. But
# it could be configured a lot smarter.
#
# See syslog-ng(8) and syslog-ng.conf(5) for more information.
#
# Note: it also sources additional configuration files (*.conf)
# located in /etc/syslog-ng/conf.d/
options {
flush_lines (0);
time_reopen (10);
log_fifo_size (1000);
chain_hostnames (off);
use_dns (no);
use_fqdn (no);
create_dirs (no);
keep_hostname (yes);
};
source s_sys {
system();
internal();
};
source syslog {
udp(ip(0.0.0.0) port(514));
};
destination d_cons { file("/dev/console"); };
destination d_mesg { file("/var/log/messages"); };
destination d_auth { file("/var/log/secure"); };
destination d_mail { file("/var/log/maillog" flush_lines(10)); };
destination d_spol { file("/var/log/spooler"); };
destination d_boot { file("/var/log/boot.log"); };
destination d_cron { file("/var/log/cron"); };
destination d_kern { file("/var/log/kern"); };
destination d_mlal { usertty("*"); };
destination cacti_syslog {
sql(type(mysql)
host("localhost")
username("root")
password("admin123")
database("cacti")
table("syslog_incoming")
columns("host", "facility", "priority", "date", "time", "message")
values('$HOST', '$FACILITY', '$PRIORITY', '$YEAR-$MONTH-$DAY', '$HOUR:$MIN:$SEC', '$MSG')
);
};
filter f_kernel { facility(kern); };
filter f_default { level(info..emerg) and
not (facility(mail)
or facility(authpriv)
or facility(cron)); };
filter f_auth { facility(authpriv); };
filter f_mail { facility(mail); };
filter f_emergency { level(emerg); };
filter f_news { facility(uucp) or
(facility(news)
and level(crit..emerg)); };
filter f_boot { facility(local7); };
filter f_cron { facility(cron); };
#log { source(s_sys); filter(f_kernel); destination(d_cons); };
log { source(s_sys); filter(f_kernel); destination(d_kern); };
log { source(s_sys); filter(f_default); destination(d_mesg); };
log { source(s_sys); filter(f_auth); destination(d_auth); };
log { source(s_sys); filter(f_mail); destination(d_mail); };
log { source(s_sys); filter(f_emergency); destination(d_mlal); };
log { source(s_sys); filter(f_news); destination(d_spol); };
log { source(s_sys); filter(f_boot); destination(d_boot); };
log { source(s_sys); filter(f_cron); destination(d_cron); };
log { source(syslog); destination(cacti_syslog); };
log { source(s_sys); destination(cacti_syslog); };
# Source additional configuration files (.conf extension only)
@include "/etc/syslog-ng/conf.d/*.conf"
# vim:ft=syslog-ng:ai:si:ts=4:sw=4:et:
阅读更多
内容来自用户分享和网络整理,不保证内容的准确性,如有侵权内容,可联系管理员处理 
相关文章推荐
- 如何使用 syslog-ng 从远程 Linux 机器上收集日志
- 如何使用 syslog-ng 从远程 Linux 机器上收集日志
- cacti下syslog插件安装&&syslog-ng统一管理日志
- 如何使用 syslog-ng 从远程 Linux 机器上收集日志 | Linux 中国
- Syslog-ng+Rsyslog收集日志:logrotate日志切割、轮询(七)
- Logstash收集nginx日志之使用grok过滤插件解析日志
- 使用syslog-ng搭建日志服务器
- Syslog-ng+Rsyslog收集日志:rsyslog配置(二)
- Syslog-ng+Rsyslog收集日志:写入数据库MySQ, MS-SQL,SQLite, mSQL(六)
- Syslog-ng+Rsyslog收集日志:Syslog-ng安装(一)
- 使用syslog-ng记录udp日志
- RHEL5 下使用syslog-ng构建集中型日志服务器
- Syslog-ng+Rsyslog收集日志:RELP可靠传输,替代UDP、TCP(五)
- openresty 使用 log_by_lua 发送日志到 syslog-ng
- RHEL5 下使用syslog-ng构建集中型日志服务器
- nginx日志切割并使用flume-ng收集日志
- RHEL5 下使用syslog-ng构建集中型日志服务器
- syslog-ng+loganalyzer(非常详细配置文件)部署收集操作日志
- Syslog-ng+Rsyslog收集日志:rsyslog-v8.X版 配置(二)
- syslog-ng使用logrotate进行日志切片压缩