1375 |
richard |
1 |
# Example of a simple configuration for ulogd with ALCASAR
|
|
|
2 |
|
|
|
3 |
[global]
|
1452 |
richard |
4 |
|
1375 |
richard |
5 |
######################################################################
|
|
|
6 |
# GLOBAL OPTIONS
|
|
|
7 |
######################################################################
|
|
|
8 |
|
1452 |
richard |
9 |
user="ulogd"
|
|
|
10 |
group="ulogd"
|
1375 |
richard |
11 |
|
|
|
12 |
# logfile for status messages
|
1452 |
richard |
13 |
logfile="/var/log/ulogd/ulogd.log"
|
1375 |
richard |
14 |
|
1452 |
richard |
15 |
# loglevel: debug(1), info(3), notice(5), error(7) or fatal(8) (default 5)
|
|
|
16 |
#loglevel=8
|
1375 |
richard |
17 |
|
|
|
18 |
|
|
|
19 |
######################################################################
|
|
|
20 |
# PLUGIN OPTIONS
|
|
|
21 |
######################################################################
|
|
|
22 |
|
|
|
23 |
# We have to configure and load only the plugins we want to use
|
|
|
24 |
|
|
|
25 |
# general rules:
|
|
|
26 |
# 1. load the plugins _first_ from the global section
|
|
|
27 |
# 2. options for each plugin in seperate section below
|
|
|
28 |
|
1452 |
richard |
29 |
plugin="/usr/lib64/ulogd/ulogd_inppkt_ULOG.so"
|
|
|
30 |
plugin="/usr/lib64/ulogd/ulogd_filter_IFINDEX.so"
|
|
|
31 |
plugin="/usr/lib64/ulogd/ulogd_filter_IP2STR.so"
|
|
|
32 |
plugin="/usr/lib64/ulogd/ulogd_filter_PRINTPKT.so"
|
|
|
33 |
plugin="/usr/lib64/ulogd/ulogd_filter_PRINTFLOW.so"
|
|
|
34 |
plugin="/usr/lib64/ulogd/ulogd_output_LOGEMU.so"
|
|
|
35 |
plugin="/usr/lib64/ulogd/ulogd_raw2packet_BASE.so"
|
1375 |
richard |
36 |
|
1452 |
richard |
37 |
# this is a stack for ULOG packet-based logging via LOGEMU
|
|
|
38 |
stack=ulog1:ULOG,base1:BASE,ip2str1:IP2STR,print1:PRINTPKT,emu1:LOGEMU
|
1375 |
richard |
39 |
|
1452 |
richard |
40 |
[ulog1]
|
|
|
41 |
nlgroup=CHANGEVALUE
|