Forwarding Syslog Messages using Syslog-ng

Here is an example for FreeBSD and Linux platforms.
  1. Log in to the target device as a super user.
  2. Open /etc/syslog-ng/syslog-ng.conf file with a text editor (e.g vi).
  3. Add source information to file. See the following examples:

    FreeBSD:

    source src { unix-dgram("/var/run/log"); internal ();};

    Linux: (will gather both system and kernel logs)

    source src { internal(); unix-stream("/dev/log" keep-alive(yes) max-connections(100)); pipe("/proc/kmsg"); udp(); };
  4. Add destination information (in this case, the server). For example:
    log { source(src); destination(zenoss); };