-
Notifications
You must be signed in to change notification settings - Fork 0
/
log2syslog.conf
36 lines (33 loc) · 1.42 KB
/
log2syslog.conf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
# Configuration file for log2syslog
# You can set log2syslogc to tail mode (see below) or run it in scheduled "batch" mode.
[Syslog_server]
host = "localhost"
port = 514
protocol = "udp" # udp/tcp
# message_format can be:
# - none: send log line as is, no additional header
# - RFC3164: provides an RFC 3164 compliant message
# - RFC5424: provides an RFC 5424 compliant message.
# - Default: is a non-compliant amalgamation of 3164 and 5424, intended to
# maximize compatibility.
message_format = "RFC3164"
# log_tag is a tag appended on each line of log sent (with not value a 'log2syslog' will appear)
log_tag = "dmz"
[Logsources]
# WARNING: log_files should be defined using single quotes, using double quotes
# can lead to some unicode conversion with undesired results
# Windows users can use either '\' or '/' as path separator
log_files = [ 'bin2.txt']
#log_files = [ 'log_samples/syslog']
#log_files = [ 'log_samples/syslog', 'log_samples/modsec_audit2.log', 'log_samples/modsec_audit3.log' ]
# Use 'inotify = true' to get fs tells log2syslog that log file has changed,
# Use 'inotify = false', to log2syslog pool file for any change
inotify = true
[General]
# ratelimit control the rate of logs to send per second to the syslog server
rate_limit = 5000
# log2syslog own log used to debug and stats
#log_type can be 'file', 'syslog' or 'stdout'
log_type = "stdout"
log_file = "log2syslog.log"
replace_control_characters = true