mirror of
https://github.com/zeek/zeek.git
synced 2025-10-02 06:38:20 +00:00
a06ef66edc
These may be redefined to customize log rotation path prefixes, including use of a directory. File extensions are still up to individual log writers to add themselves during the actual rotation. These new also allow for some simplication to the default ASCII postprocessor function: it eliminates the need for it doing an extra/awkward rename() operation that only changes the timestamp format. This also teaches the supervisor framework to use these new options to rotate ascii logs into a log-queue/ directory with a specific file name format (intended for an external archiver process to monitor separately).
20 lines
618 B
Text
20 lines
618 B
Text
##! Redefines the options common to all proxy nodes within a Zeek cluster.
|
|
##! In particular, proxies are not meant to produce logs locally and they
|
|
##! do not forward events anywhere, they mainly synchronize state between
|
|
##! worker nodes.
|
|
|
|
@prefixes += cluster-proxy
|
|
|
|
## Don't do any local logging.
|
|
redef Log::enable_local_logging = F;
|
|
|
|
## Make sure that remote logging is enabled.
|
|
redef Log::enable_remote_logging = T;
|
|
|
|
redef Log::default_rotation_interval = 24hrs;
|
|
|
|
@if ( ! Supervisor::is_supervised() )
|
|
## Use the cluster's delete-log script.
|
|
redef Log::default_rotation_postprocessor_cmd = "delete-log";
|
|
@endif
|
|
|