Reputation: 15090
How to disable DNS hostname lookup in rsyslog?
How do I configure rsyslog to write raw IP addresses instead of DNS names in log files for remote hosts?
Upvotes: 0
Views: 12459
Answers (3)
Reputation: 96
You need to create a new template and apply it on /etc/rsyslog.conf. You should create like these on:
$template myFormat,"%timegenerated% %HOSTNAME% %syslogtag%%msg%\n"
$ActionFileDefaultTemplate myFormat
Upvotes: 0
Reputation: 71
I use
fromhost-ip
instead of
hostname or source
fromhost-ip reference the host that send the packet to this rsyslog. It meant that if you have any relay intermediate system, the last one is the IP that you see. If you don't use relay this is a valid solution.
Upvotes: 2
Reputation: 15090
In Debian, open /etc/defaults/rsyslog and modify:
RSYSLOGD_OPTIONS="-x -Q"
and then:
# service rsyslog restart
See man rsyslogd(8) for other possible options. This doesn't disable DNS names for all remote hosts, only some of them.
Upvotes: 2
Related Questions
- Python logging how to track hostname in logs?
- Syslog-NG: Possible to disable "keep_hostname" but enable for a specific filter?
- rsyslog to send ip address rather than hostname
- How to configure Logback to add host-name/IP to each log event?
- Rsyslog filtering
- How to stop Rsys from sending log data
- SyslogAppender: Using a pattern not starting with square brackets overwrites the host name
- How to set source host address in Python Logging?
- Full URLs in Rails logs
- how to spoof hostname in syslog messages?