In this ~8 minute video Rainer Gerhards describes Howto store remote messages in a separate file. It’s actually one of the most frequently asked question on rsyslog forum and mailing list. Note: the tutorial is for legacy config format in order to help most people gain benefit from it.
How to separate log files by host name of sending device?
Question: I have activated remote logging and receiving syslog messages from several devices. I want to write a separate log file for each device sending syslog messages. How to achieve that? Answer: It is pretty easy. You can use dynaFiles for it. With them, you specify a template as the file name. For each message, […]