Rsyslog is an enhanced multi-threaded syslogd system utility providing support for message logging.  Support of both internet and unix domain sockets enables this utility to support both local and remote logging. It is a replacement to the old syslogd and  it works on the same syslog.conf file syntax. Its advanced features make it suitable for enterprise-class, encryption protected syslog relay chains while at the same time being very easy to setup for the novice user.  Rsyslogd  provides a kind of logging that many modern programs use.  Every logged message contains at least a time and a hostname field, normally a program name field, too, but that depends on how trusty the logging program is.

The basic config file looks like this :

[root@linux-cloud ~]# rpm -qa | grep rsyslog
rsyslog-3.14.1-2.fc9.i386
[root@linux-cloud ~]# grep -v ^$  /etc/rsyslog.conf    | grep -v ^#
$ActionFileDefaultTemplate RSYSLOG_TraditionalFileFormat
$ModLoad imuxsock.so    # provides support for local system logging (e.g. via logger command)
$ModLoad imklog.so      # provides kernel logging support (previously done by rklogd)
*.info;mail.none;authpriv.none;cron.none                /var/log/messages
authpriv.*                                              /var/log/secure
mail.*                                                  -/var/log/maillog
cron.*                                                  /var/log/cron
*.emerg                                                 *
uucp,news.crit                                          /var/log/spooler
local7.*                                                /var/log/boot.log
[root@linux-cloud ~]#

You can download it from http://www.rsyslog.com/

0 Shares:
Leave a Reply

Your email address will not be published. Required fields are marked *

You May Also Like