From 6045af9b79466e9ae5de87db64f7ddb183dfe3e9 Mon Sep 17 00:00:00 2001
From: Silvio Rhatto <rhatto@riseup.net>
Date: Mon, 30 May 2016 11:25:45 -0300
Subject: Adds xenial template

---
 templates/syslog-ng.conf_xenial.erb | 267 ++++++++++++++++++++++++++++++++++++
 1 file changed, 267 insertions(+)
 create mode 100644 templates/syslog-ng.conf_xenial.erb

diff --git a/templates/syslog-ng.conf_xenial.erb b/templates/syslog-ng.conf_xenial.erb
new file mode 100644
index 0000000..aea3e1c
--- /dev/null
+++ b/templates/syslog-ng.conf_xenial.erb
@@ -0,0 +1,267 @@
+@version: 3.5
+@include "scl.conf"
+@include "`scl-root`/system/tty10.conf"
+
+#
+# Configuration file for syslog-ng under Debian.
+# Customized for sarava.org, originally developed by riseup.net
+#
+# see http://www.campin.net/syslog-ng/expanded-syslog-ng.conf
+# for examples.
+#
+# levels: emerg alert crit err warning notice info debug
+#
+
+# First, set some global options.
+options { chain_hostnames(off); flush_lines(0); use_dns(no); use_fqdn(no);
+	  owner("root"); group("adm"); perm(0640); stats_freq(0);
+	  bad_hostname("^gconfd$");
+};
+
+########################
+# Sources
+########################
+# This is the default behavior of sysklogd package
+# Logs may come from unix stream, but not from another machine.
+#
+source s_src {
+<% if (@log_kernel_msgs == true) -%>
+       system();
+<% end -%>
+       internal();
+};
+
+# If you wish to get logs from remote machine you should uncomment
+# this and comment the above source line.
+#
+#source s_net { tcp(ip(127.0.0.1) port(1000)); };
+
+############################################################
+## generic destinations
+
+destination df_facility_dot_info   { file("/var/log/$FACILITY.info");   };
+destination df_facility_dot_notice { file("/var/log/$FACILITY.notice"); };
+destination df_facility_dot_warn   { file("/var/log/$FACILITY.warn");   };
+destination df_facility_dot_err    { file("/var/log/$FACILITY.err");    };
+destination df_facility_dot_crit   { file("/var/log/$FACILITY.crit");   };
+
+############################################################
+## generic filters and rewrites
+
+# strip IP addresses
+# regexp thanks to micah and dsyslog
+rewrite r_strip {subst("(25[0-5]|2[0-4][0-9]|[0-1]?[0-9]?[0-9])([\\.\\-](25[0-5]|2[0-4][0-9]|[0-1]?[0-9]?[0-9])){3}", "0.0.0.0", value("MESSAGE"), flags("global"));};
+
+filter f_at_least_info   { level(info..emerg);   };
+filter f_at_least_notice { level(notice..emerg); };
+filter f_at_least_warn   { level(warn..emerg);   };
+filter f_at_least_err    { level(err..emerg);    };
+filter f_at_least_crit   { level(crit..emerg);   };
+
+filter rrdcached { not program(rrdcached); };
+
+############################################################
+## auth.log
+
+filter f_auth { facility(auth, authpriv); };
+destination df_auth { file("/var/log/auth.log"); };
+log {
+    source(s_src);
+    filter(f_auth);
+    rewrite(r_strip);
+    destination(df_auth);
+};
+
+############################################################
+## daemon.log
+
+filter f_daemon { facility(daemon); };
+destination df_daemon { file("/var/log/daemon.log"); };
+log {
+    source(s_src);
+    filter(f_daemon);
+    filter(rrdcached);
+    rewrite(r_strip);
+    destination(df_daemon);
+};
+
+############################################################
+## kern.log
+
+filter f_kern { facility(kern); };
+destination df_kern { file("/var/log/kern.log"); };
+log {
+    source(s_src);
+    filter(f_kern);
+    rewrite(r_strip);
+    destination(df_kern);
+};
+
+############################################################
+## user.log
+
+filter f_user { facility(user); };
+destination df_user { file("/var/log/user.log"); };
+log {
+    source(s_src);
+    filter(f_user);
+    rewrite(r_strip);
+    destination(df_user);
+};
+
+############################################################
+## sympa.log
+
+filter f_sympa { program("^(sympa|bounced|archived|task_manager)"); };
+destination d_sympa { file("/var/log/sympa.log"); };
+log {
+    source(s_src);
+    filter(f_sympa);
+    rewrite(r_strip);
+    destination(d_sympa);
+    flags(final);
+};
+
+############################################################
+## wwsympa.log
+
+filter f_wwsympa { program("^wwsympa"); };
+destination d_wwsympa { file("/var/log/wwsympa.log"); };
+log {
+    source(s_src);
+    filter(f_wwsympa);
+    rewrite(r_strip);
+    destination(d_wwsympa);
+    flags(final);
+};
+
+############################################################
+## ldap.log
+
+filter f_ldap { program("slapd"); };
+destination d_ldap { file("/var/log/ldap.log"); };
+log {
+    source(s_src);
+    filter(f_ldap);
+    rewrite(r_strip);
+    destination(d_ldap);
+    flags(final);
+};
+
+############################################################
+## postfix.log
+
+# special source because of chroot jail
+#source s_postfix { unix-stream("/var/spool/postfix/dev/log" keep-alive(yes)); };
+filter f_postfix { program("^postfix/"); };
+destination d_postfix { file("/var/log/postfix.log"); };
+log {
+    source(s_src);
+    filter(f_postfix);
+    rewrite(r_strip);
+    destination(d_postfix);
+    flags(final);
+};
+
+############################################################
+## courier.log
+
+filter f_courier { program("courier|imap|pop"); };
+destination d_courier { file("/var/log/courier.log"); };
+log {
+    source(s_src);
+    filter(f_courier);
+    rewrite(r_strip);
+    destination(d_courier);
+    flags(final);
+};
+
+############################################################
+## maildrop.log
+
+filter f_maildrop { program("^maildrop"); };
+destination d_maildrop { file("/var/log/maildrop.log"); };
+log {
+    source(s_src);
+    filter(f_maildrop);
+    rewrite(r_strip);
+    destination(d_courier);
+    flags(final);
+};
+
+############################################################
+## mail.log
+
+filter f_mail { facility(mail); };
+destination df_mail { file("/var/log/mail.log"); };
+
+log {
+    source(s_src);
+    filter(f_mail);
+    rewrite(r_strip);
+    destination(df_mail);
+};
+
+############################################################
+## messages.log
+
+filter f_messages {
+  level(debug,info,notice)
+  and not facility(auth,authpriv,daemon,mail,user,kern);
+};
+destination df_messages { file("/var/log/messages.log"); };
+log {
+    source(s_src);
+    filter(f_messages);
+    rewrite(r_strip);
+    destination(df_messages);
+};
+
+############################################################
+## errors.log
+
+filter f_errors {
+    level(warn,err,crit,alert,emerg)
+    and not facility(auth,authpriv,daemon,mail,user,kern);
+};
+destination df_errors { file("/var/log/errors.log"); };
+log {
+    source(s_src);
+    filter(f_errors);
+    rewrite(r_strip);
+    destination(df_errors);
+};
+
+############################################################
+## emergencies
+
+filter f_emerg { level(emerg); };
+destination du_all { usertty("*"); };
+log {
+    source(s_src);
+    filter(f_emerg);
+    rewrite(r_strip);
+    destination(du_all);
+};
+
+############################################################
+## console messages
+
+filter f_xconsole {
+    facility(daemon,mail)
+    or level(debug,info,notice,warn)
+    or (facility(news)
+    and level(crit,err,notice));
+};
+destination dp_xconsole { pipe("/dev/xconsole"); };
+log {
+    source(s_src);
+    filter(f_xconsole);
+    rewrite(r_strip);
+    destination(dp_xconsole);
+};
+
+###
+# Include all config files in /etc/syslog-ng/conf.d/
+###
+@include "/etc/syslog-ng/conf.d/*.conf"
-- 
cgit v1.2.3