Syslog-ng

跳转到:导航搜索
Icon-cleanup.png
本文需要关注,因为它不符合我们的wiki 指南。请使用 应用程序模板
如果您想贡献,请阅读此维基的规则,如果您有任何问题,请随时联系维基团队,我们非常乐意帮助您!:-)
syslog-ng 应用程序是一个高度可移植的 syslog 解决方案,用于在生产环境中创建安全、灵活和可靠的日志记录基础设施。


请参考 Help:Editing 以撰写高质量的批准文章。

syslog-ng 简介

syslog-ng 应用程序支持使用 TCP 和 TLS 进行可靠且加密的传输,并提供强大的消息过滤、排序、预处理和日志规范化功能。 利用消息解析和分类,syslog-ng 能够实时和离线关联日志消息,使其特别适合于实施人工无视原则。

Syslog-ng 自多年前起就在 openSUSE 中可用。 长期以来,这意味着 syslog-ng 版本 2.0.9,但最近带有附加功能的较新版本的 syslog-ng 已到达 openSUSE。 此页面总结了最重要的更改。

... openSUSE 11.2

我们可以将其称为基线。 直到 openSUSE 11.2,包含的 syslog-ng 版本为 2.0.9

openSUSE 11.3

openSUSE 11.3 具有 syslog-ng 版本 3.1.1,这是一个新的主要版本。 由于 /usr 依赖性,一些新功能(如 SSL 和数据库支持)未启用。 从桌面用户的角度来看,没有什么变化,日志记录的工作方式与以前一样。 但在底层,许多新功能为愿意更改配置文件的人提供了支持。

以下列表只是新功能的亮点

  • 从 2.0 到 3.0 的新闻
 * Version 3.0 of syslog-ng supports the new syslog protocol
   standards by the Internet Engineering Task Force (IETF).
 * Log statements can be embedded into each other, making it
   possible to design complex log paths. That way for example
   the results of a filter can be sent to multiple destinations,
   or it can be sent to a destination unchanged, and partly
   rewritten for the other destination.
 * The encoding of source files can be set for proper character
   conversion (internally syslog-ng represents every message in
   UTF-8).
 * The syslog-ng application assigns a unique message
   identification number to every log message, making it easy
   to detect if any messages are lost.
 * The syslog-ng application can read, process, and rewrite
   structured messages (e.g., Apache webserver logs) using
   templates and regular expressions. Both messages with fixed
   field sizes and fields separated with delimiters (e.g.,
   comma-separated values) are supported.
  • 从 3.0 到 3.1 的新闻
 * Support for patterndb v2 and v3 format, along with a bunch
   to new parsers: ANYSTRING, IPv6, IPvANY and FLOAT.
 * Added a new "pdbtool" utility to manage patterndb files:
   convert them from v1 or v2 format, merge mulitple patterndb
   files into one and look up matching patterns given a specific
   message.
 * Support for message tags: tags can be assigned to log messages
   as they enter syslog-ng: either by the source driver or via
   patterndb.
   Later it these tags can be used for efficient filtering.
 * Added support for rewriting structured data.
 * Macros and name-value pairs got a little tighter integration,
   in filters where syslog-ng 3.0 was limited to only use
   name-value pairs, with 3.1 you can also use macros.
 * Enhanced dynamic name-value performance by a factor of three.
 * Some parsers got additional features: NUMBER is now able to
   parse hexadecimal numbers, ESTRING is now able to search for
   multiple characters as the end of the string.
 * Added non-standard and non-portable facility codes (range
   10-15), decouple syslog-ng facility name information from
   the system used to compile syslog-ng on.

openSUSE 11.4

Factory 具有 syslog-ng 版本 3.1.2,但 Base:System 已经达到版本 3.2.1,它带来了模块化、许多新功能、SSL 启用等。 数据库支持待定,因为它需要 libdbi,而 libdbi 仍然不在 factory 中。

通讯

团队成员

参见

相关文章

外部链接

从 "https://en.opensuse.net.cn/index.php?title=Syslog-ng&oldid=53451" 检索