Syslog NG - MacOS Testing
  • GSOC - Project Report
  • Testing Methodology
  • Testing Status
  • Installation
  • Modules
    • afsocket [17]
      • network() Source Driver
      • network() Destination Driver
      • syslog() Source/Destination Driver
      • unix-stream() Source Driver
      • unix-stream() Destination Driver
      • unix-dgram() Source/Destination Driver
      • TLS-Encryption
        • Using network()
        • Using syslog()
    • affile [6]
      • file() Source Driver
      • file() Destination Driver
      • pipe() Source Driver
      • pipe() Destination Driver
      • wildcard_file() Source Driver
      • stdin() Source Driver
    • afprog [2]
      • program() Source Driver
      • program() Destination Driver
    • system [1]
      • Collecting local logs pre macOS 10.15 Catalina
    • afuser [1]
    • pseudofile [1]
    • mod-python [7]
      • python() Source Driver
      • python-fetcher() Source Driver
      • python() Destination Driver*
    • afmongodb [1]
    • http [1]
    • riemann [1]
    • redis [1]
    • elasticsearch-http [1]
    • afsql [1]
    • afsmtp [1]
Powered by GitBook
On this page
  • Important Information
  • Testing

Was this helpful?

  1. Modules

system [1]

Syslog-ng OSE can automatically collect the system-specific log messages of the host on a number of platforms using the system() driver.

Important Information

If the system() driver is included in the syslog-ng OSE configuration file, syslog-ng OSE automatically adds the following sources to the syslog-ng OSE configuration. It automatically links to the default logs destination of the given platform through a compatible driver. For example:

Linux

unix-dgram("/dev/log"); file("/proc/kmsg" program-override("kernel") flags(kernel));

Solaris 8

sun-streams("/dev/log");

...

pre macOS 10.15 Catalina

file("/var/log/system.log" follow-freq(1));

macOS 10.15 Catalina and later

darwin-oslog();

Testing

@version: 4.2
@include "scl.conf"

options {
	frac-digits(6); 
};

source s_local0 {
	system();
};

source s_local1 {	
	darwin-oslog()
};

source s_local2 {
	darwin-oslog-stream();
};

log {
	source(s_local0);
	# This one is the same as s_local0 actually
	#source(s_local1);
	# This one gives a live macOS OSLog stream that contains much, much more log events, like debug messages, and not persistent messages
	# Take care, can lead to huge system load!
	#source(s_local2);
	
	destination {
		file(
			"/var/log/messages" 
		
			flags(no-multi-line syslog-protocol)
			flush-lines(1)
			flush-timeout(1)
		);
	};
	
	flags(flow-control);
};
Previousprogram() Destination DriverNextCollecting local logs pre macOS 10.15 Catalina

Last updated 1 year ago

Was this helpful?