mirror of
https://github.com/zeek/zeek.git
synced 2025-10-02 14:48:21 +00:00
b114766205
And use to to avoid redef'ing the log rotation postprocessor to "archive-log" by default since it's unlikely PATH is configured to find that script.
29 lines
951 B
Text
29 lines
951 B
Text
##! This is the core Zeek script to support the notion of a cluster logger.
|
|
##!
|
|
##! The logger is passive (other Zeek instances connect to us), and once
|
|
##! connected the logger receives logs from other Zeek instances.
|
|
##! This script will be automatically loaded if necessary based on the
|
|
##! type of node being started.
|
|
|
|
##! This is where the cluster logger sets it's specific settings for other
|
|
##! frameworks and in the core.
|
|
|
|
@prefixes += cluster-logger
|
|
|
|
## Turn on local logging.
|
|
redef Log::enable_local_logging = T;
|
|
|
|
## Turn off remote logging since this is the logger and should only log here.
|
|
redef Log::enable_remote_logging = F;
|
|
|
|
## Log rotation interval.
|
|
redef Log::default_rotation_interval = 1 hrs;
|
|
|
|
## Alarm summary mail interval.
|
|
redef Log::default_mail_alarms_interval = 24 hrs;
|
|
|
|
## Use the cluster's archive logging script.
|
|
|
|
@if ( ! Supervisor::is_supervised() )
|
|
redef Log::default_rotation_postprocessor_cmd = "archive-log";
|
|
@endif
|