Log each message to a file based on the date and sending device

Rules define what action Kiwi Syslog Server NG takes when it receives a message. This example creates a rule to log each message to a file. The log files are automatically split based on the current date and the IP address of the sending device. Kiwi Syslog Server NG writes a new log each day for each device.

1. From the Kiwi Syslog Server NG navigation bar, choose Setup > Rules.

2. Click Add. Use the New Rule wizard to add rule details.

3. Define the rule name in the provided field. Click Next.

4. In the Filters window, click Next.

   This rule does not include any filters because the action is performed on all messages.

5. Click Add Action.

6. Define the action name in the provided field.

7. In the Action drop down, select Log to a file.

8. Change the default file name. Use AutoSplit variables, by clicking the icon on the right, to create log files based on the date and the IP address of the sending device. For this example, the file name is IP_address - Syslog - YYYY-MM-DD.
   1. Place the cursor at the beginning of the file name (after Logs\).
   2. Click the icon on the right and choose IP address > IP Address (4 octets, zero padded).

   3. Replace SyslogCatchAll with -Syslog. Leave the AutoSplit date variable at the end.

      

9. Check the Enable Log File Rotation box to automatically rotate log files.

   Log file rotation prevents log files from growing indefinitely and using large amounts of disk space.

10. Click Add to apply the action.

11. In the New Rule wizard, click Next.

12. Review all filters and actions. Click Save.