To have rsyslog working correctly on RHEL 4 or 5, some conditions have to be met. The method described has been tested with rsyslog 5.7.1. First of all compile and install the dependencies. gnutls-2.8.6.tar.bz2 libgcrypt-1.4.6.tar.gz libgpg-error-1.9.tar.gz libtasn1-2.2.tar.gz After that, you can install rsyslog using the following commands: ./configure PKG_CONFIG_PATH=/usr/local/lib/pkgconfig –enable-gnutls make make install It could […]
How to use rate limiting in rsyslog?
This article is tested with rsyslog 5.7.1 on Fedora 13. It will not work with version of rsyslog prior to 5.7.1. In rsyslog 5.7.1 we introduced rate limiting. This is a option for the Unix Socket Input module called imuxsock. In short, this option limits the amount of messages written into logfiles by a process, […]
Changing the settings
Go back to What is imuxsock? Before we can begin testing on how rate limiting works, we should change the default settings. By default, rate limiting will only work, if a process sends more than 200 messages in 5 seconds.To have some influence on the rate limiting we have basically two options: $SystemLogRateLimitInterval [number] $SystemLogRateLimitBurst […]
First try to test rate limiting
Go back to Changing the settings For a first test of the rate limiting feature we made up our mind on how to test it. We soon came up with the idea of a small shell script that will run logger with a test message. The script looks as follows n=1000 i=0 while [ $i […]
Second try to test rate limiting
Go back to How to build test-tools? After building the test tool syslog caller, we can give the testing another try. The syslog caller tool will be one process that creates the designated amount of messages. Since it has a very large output, we need it to produce a lot of messages to see the […]
rsyslog 5.7.1 (v5-devel) released
Hi all, We have just released rsyslog 5.7.0, the new v5-devel. This is a feature-enhancement release. Rsyslog 5.7.1 offers two
Changelog for 5.7.1 (v5-devel)
Version 5.7.1 [V5-DEVEL] (rgerhards), 2010-10-05 support for Hadoop’s HDFS added (via omhdfs) imuxsock now optionally use SCM_CREDENTIALS to pull the pid from the log socket itself (thanks to Lennart Poettering for the suggesting this feature) imuxsock now optionally uses per-process input rate limiting, guarding the user against processes spamming the system log (thanks to Lennart […]
rsyslog 5.7.1 (v5-devel)
Download file name: rsyslog 5.7.1 (v5-devel) 5.7.1(v5-devel) md5sum: b49c278c28adb2f4bbe352bacd4379cc Author: Rainer Gerhards (rgerhards@adiscon.com) Version: 5.7.1 File size: 2,29 MB Download this file now!
How to build the testing tools?
This article has been tested with rsyslog 5.7.1 on Fedora 13. It is part of the article “How to use rate limiting?” Go back to First try to test rate limiting (fail) When building a configuration for rsyslog, you will sometimes stumble upon the question, if your setup really works. To prove this in your […]