Boa tarde, pessoal.
Estou utilizando a última versão do rsyslogd compilada da base e com todos os módulos necessários (mmnormalize, mmjsonparse, ommongodb e imtcp/imudp) validados e funcionais.
O arquivo de configuração está da seguinte forma:
module(
load="imuxsock"
sysSock.Use="on"
sysSock.Identify="/run/systemd/journal/syslog"
) # gives help for native system logging (e.g. by way of logger command)
module(load="imklog") # gives kernel logging help (beforehand accomplished by rklogd)
module(load="ommongodb")
module(load="mmnormalize")
module(load="mmjsonparse")
module(load="imudp") # must be accomplished simply as soon as
enter(kind="imudp" port="514" Ruleset="mongodb")
set $!usr!nome = "";
set $!usr!tipo = "";
template(title="cee" kind="subtree" subtree="$!usr")
ruleset(title="mongodb") {
motion(kind="mmjsonparse")
if $parsesuccess == "FAIL" then
motion(kind="mmnormalize" rulebase="/root/teste.rulebase" userawmsg="on")
if $!nome != "" then {
set $!usr!nome = $!nome;
name outwriter
}
else {
set $!usr!nome = "teste";
set $!usr!tipo = "tipo";
name outwriter
}
}
ruleset(title="outwriter") {
motion(kind="omfile" file="/var/log/logfile.cee" template="cee")
}
$ActionFileDefaultTemplate RSYSLOG_TraditionalFileFormat
$IncludeConfig /and so forth/rsyslog.d/*.conf
*.information;mail.none;authpriv.none;cron.none /var/log/messages
authpriv.* /var/log/safe
mail.* /var/log/maillog
cron.* /var/log/cron
*.emerg :omusrmsg:*
uucp,information.crit /var/log/spooler
local7.* /var/log/boot.log
No entanto, quando executo o programa para forçar a escrita do arquivo cee e validar o funcionamento do template, ele fica sempre vazio.
Testei com um template csv e o arquivo foi escrito conforme esperado, então acho que dá para assumir que o problema é com o subtree mesmo.
Eu tentei me basear nesta documentação:
Best Quality Private Proxies by Proxyti:
fully anonymous
100% anonymous and safe reliable private proxies
1,000 mb/s speed
Blazing fast proxy servers with up to 1,000 mb/s speed
Elite quality
Best quality proxies from world and USA locations
Unlimited bandwidth
No limits of using your proxies - truly unlimited bandwidth
Buy Now - Get 2X More Proxies:
100 Private Proxies
$30/month
200 Private Proxies
$50/month
500 Private Proxies
$100/month
1,000 Private Proxies
$180/month
2,000 Private Proxies
$340/month
5,000 Private Proxies
$750/month
Our Unbeatable Proxy Features:
Anonymous Proxies
100% security with our proxies – anonymous and secure proxy experience
Ultra Fast Speed
Proxyti offers up to 1,000 mb/s ultra fast proxy speed – feel the real power!
Unlimited Bandwidth
No data limits for your proxies – truly unlimited proxy bandwidth for you!
Proxy Authentication
We secure proxies with IP authentication – use your proxies with your own IP
Elite Quality
Highest proxy quality guarantee with supported HTTP/HTTPS and SOCKS connections
Great Prices
Proxyti offers great proxies for great prices – this is what we call new proxy era!
USA Locations
You can choose USA or random proxies locations when ordering for free
No Limitations
We don’t have any limits – you can use your proxies with every software or program!
Lots Of Subnets
The more proxies you buy, the more subnets you get – it is worth ordering more!
Semi Dedicated
Our proxies are shared with maximum of 5 users at a time, but they are still anonymous
Fast Delivery
We deliver your ordered proxies in your email in .txt file – this is simple as that
Awesome Support
Have any questions or want more information – please contact us anytime!
