MonitorWare Knowledge Base

Your first source for knowledge

Skip to content

log to database

This is the place for you, if you got rsyslog up and running but wonder how to make it do what you want.

Moderator: rgerhards

Post a reply

log to database

Postby ithierack » Sat Jul 19, 2008 10:19 am

Hello,
i start new with rsyslog and log to a database(postgresql)
The normal logging from the mail-server runs well, but from the firewall there is an issue with the line splitting
I use the default-setting(no special template) for insert into the database.

Here is on line as text-log

2008-07-19T11:10:07+02:00 FW1 src="62.215.144.191: 1860" dst="10.1.0.244:34217" msg="Traffic Log" note="Traffic Log" devID="0019CB7F2A24" cat="Traffic Log" duration=7 send=1291 rcvd=416 dir="WAN:LAN" protoID=6 proto="others" trans="Normal"

the problem is, it splitt's the line on spaces, so i have the "src" only as fragment in the syslogtag-field src="62.215.144.191:
an the rest in the message-field.

How can i avoid this? Or better, how split every part to insert in a extra table for analysing.

Regads,
Ingo Thierack
ithierack
New
 
Posts: 1
Joined: Sat Jul 19, 2008 9:33 am
Top

Professional Services Information

  • Custom written rsyslog.conf?
  • Maintenance Contract?
  • Installation support?

Google Ads

Post a reply

Return to Configuration

Who is online

Users browsing this forum: No registered users and 1 guest

Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group

phpBB SEO
Time : 0.049s | 13 Queries | GZIP : On
cron