Project

General

Profile

PRELUDE-LML // ADDING A LOG FILE

Added by Pierre Pichard almost 4 years ago

Hello,

I would like add a file to prelude-LML

In prelude-lml.conf, i have added the path (see below)

[format=syslog]
time-format = "%b %d %H:%M:%S"
prefix-regex = "^(?P<timestamp>.{15}) (?P<hostname>\S+) (?:(?P<process>\S+?)(?:\[(?P<pid>[0-9]+)\])?: )?"
file = /var/log/messages
file = /var/log/secure
file = /root/auth.log

I have restarted all prelude services (prelude-manager, prelude-lml, prelude-correlator, prewikka)

It doesn't work, the log file is not considered.

How should i do ?

Have a good day
Regards


Replies (1)

RE: PRELUDE-LML // ADDING A LOG FILE - Added by Antoine LUONG almost 4 years ago

Hello,

Are you sure the logs are in the syslog format?
Did you try launching Prelude LML in debug mode to see if any error is detected?

prelude-lml --debug

Regards

    (1-1/1)