分类: LINUX
2008-03-03 21:10:15
Log messages contain information about the events happening on the hosts. Monitoring system events is essential for security and system health monitoring reasons.
# 注释 :日志消息包含有所发生的事件的信息,而监控系统所发生的事件是关系到系统安全/健康的重要手段
The original syslog protocol separates messages based on the priority of the message and the facility sending the message. These two parameters alone are often inadequate to consistently classify messages, as many applications might use the same facility — and the facility itself is not even included in the log message. To make things worse, many log messages contain unimportant information. The syslog-ng application helps you to select only the really interesting messages, and forward them to a central server.
# 注释 :原来的 syslog 协议是根据 facility 和 priority 来区分日志消息的,但一般来说这是不够的,因为很多应用程序会使用相同的 facility , 而且日志中有时会混杂有很多无用的消息。
# syslog-ng 可以帮你只选择你感兴趣的信息,并转发到一台日志服务器上。
Company policies or other regulations often require log messages to be archived. Storing the important messages in a central location greatly simplifies this process.
# 注释 :同时 syslog-ng 也可以帮你对日志进行归档。
