sneak/logwriter
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

think this might work, time to begin testing

Browse Source
This commit is contained in:
Jeffrey Paul
2020-03-03 04:44:52 -08:00
commit 035af35d33
9 changed files with 151 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
root/etc/rsyslog.d/10-listeners.conf Normal file
View File

@@ -0,0 +1,9 @@
$ModLoad imudp.so
$UDPServerRun 514
$ModLoad imtcp
$InputTCPMaxSessions 100
$InputTCPServerRun 514
$ModLoad imrelp
$InputRELPServerRun 20514

7
root/etc/rsyslog.d/20-writedisk.conf Normal file
View File

@@ -0,0 +1,7 @@
$PreserveFQDN on
$template ls_json,"{%timestamp:::date-rfc3339,jsonf:@timestamp%,%source:::jsonf:@source_host%,\"@source\":\"syslog://%fromhost-ip:::json%\",\"@message\":\"%timestamp% %app-name%:%msg:::json%\",\"@fields\":{%syslogfacility-text:::jsonf:facility%,%syslogseverity-text:::jsonf:severity%,%app-name:::jsonf:program%,%procid:::jsonf:processid%}}\n"
$template systemjsonfile,"/var/logs/%$year%%$month%/%$year%%$month%%$day%.%HOSTNAME%.system.json"
*.* ?systemjsonfile;ls_json

3
root/etc/service/logspout/run Normal file
View File

@@ -0,0 +1,3 @@
#!/bin/bash
/usr/local/bin/logspout syslog://127.0.0.1:514

6
root/etc/service/rsyslog/run Normal file
View File

@@ -0,0 +1,6 @@
#!/bin/bash
chgrp syslog /var/logs
chmod g+w /var/logs
exec rsyslogd -n