Page Comparison

...

These are the valid tags and corresponding data tables that will receive the parsers' data:

Product / Service	Tags	Data tables
BIND Name Server	`dns.bind.info`	`dns.bind.info`
BIND Name Server	`dns.bind.query`	`dns.bind.query`

For more information, read more about Devo tags.

...

Finally, make sure the user running rsyslog has read permissions on the directory and the log files generated by BIND.

Table structure

These are the fields displayed in these tables:

Field	Type	Source field name	Extra fields
eventdate	`timestamp`
machine	`str`	vmachine
serverdate	`timestamp`
category	`str`
severity	`str`
interface	`str`
srcIp	`ip4`
srcPort	`int4`
name	`str`
class	`str`
type	`str`
dnsServer	`str`
message	`str`
rawMessage	`str`
hostchain	`str`		✓
tag	`str`		✓

Field	Type	Source field name	Extra fields
eventdate	`timestamp`
machine	`str`	vmachine
serverdate	`timestamp`
srcIp	`ip4`
srcPort	`int4`
name	`str`
class	`str`
type	`str`
flags	`str`
dnsServer	`ip4`
hostchain	`str`		✓
tag	`str`		✓
rawMessage	`str`		✓