linux rsyslogd jurnald - ghdrako/doc

syslog i rsyslog to dwa rozne serwisy. syslog dziala by default. Do niego mozemy dodac rsyslog ale musi zawsze dzialac syslog.

It is an improved version of the original syslog daemon, and it possesses the ability to quickly process and forward logs to any location in an IP network. Aside from syslog and rsyslog, there is syslog-ng, which is yet another daemon for handling logs. The default log handler depends on the distro one chooses. Rsyslog comes by default in many Red Hat-based distros. Run the following command to verify its presence and version on your system:

rsyslogd -v

systemctl status rsyslog

Konfiguracja

/etc/rsyslog.conf

Decyzja czy uzywamy do transmisji UDP czy TCP
Ustawienie zdalnego serwera do wysylki logow

# wyslij wszzyskie logi *.* na serwer:port
*.* @@172.16.0.99:514

systemctl enable rsyslog
systemctl start rsyslog

Many newer systems have replaced rsyslogd with journald for logging. You can choose either option, or even both, to handle your logging needs. For more information, see the documentation for your distribution.

https://pl.euro-linux.com/blog/o-systemd-journald-slow-kilka/

edit /etc/systemd/journald.conf and then reload the journal service like:

systemctl reload systemd-journald.service

linux rsyslogd jurnald - ghdrako/doc_snipets GitHub Wiki

Konfiguracja

⚠️ GitHub.com Fallback ⚠️

linux rsyslogd jurnald - ghdrako/doc_snipets GitHub Wiki

Konfiguracja

⚠️ **GitHub.com Fallback** ⚠️

⚠️ GitHub.com Fallback ⚠️