06-21-2009
Quote:
Originally Posted by
dannytrinh
My company has a strictly policies, and doesn't like the idea to install another syslog program into the system. And I try to get the log to separate off to every daemon for easy troubleshooting/debug. Is it meant I can't separate each daemon log, under Solaris 10 by using syslogd?
Thanks,
I don't think you can do (easily) this with syslogd. Of course you can simply
pipe syslog into a filter (via a named pipe), but most people would not do that, they would use syslog-ng. That is why I recommended you use syslog-ng
Actually, if you had of posted these details first, you would have saved a lot of peoples time. For example, why not begin your post (?)
My company has a strict policy and only permits syslogd, running on Solaris 10 ......
Instead, we post answers for you, then you slowly describe your infrastructure and requirements. How about describing your requirements first next time?
Thanks.
---------- Post updated at 19:19 ---------- Previous update was at 18:38 ----------
Hint:
Quote:
A named pipe (fifo), beginning with a vertical bar (‘‘|’’) followed by a pathname. The pipe must be created with mkfifo(8) before syslogd reads its configuration file. This feature is especially useful for debugging.
10 More Discussions You Might Find Interesting
1. UNIX for Advanced & Expert Users
Do someone know how to delete entry(some lines)
in file "wtmpx" that command "last" use it.
this file is binary so I cannot edit directy.
=========================
#last
root pts/1 noc Fri Mar 3 22:04 still logged in
root pts/1 noc Fri Mar 3 22:01 - 22:02 ... (4 Replies)
Discussion started by: arm_naja
4 Replies
2. Solaris
Hi Guru's
On one of our servers we have every few seconds following error:
Apr 28 10:15:27 svr10010 nrpe: connect from reno.customs.govt.nz
Apr 28 10:15:29 svr10010 nrpe: connect from reno.customs.govt.nz
Here are the details from this box:
SunOS svr10010 5.10 Generic_125100-10 sun4v... (3 Replies)
Discussion started by: gnom
3 Replies
3. UNIX for Advanced & Expert Users
Hi,
When typing the command ps -fe.the system is showing a process called SYSCON:confused:....
I am not sure what process is that.I hava a script that kills all command staring with 'sys' but i don't want to kill syscon:( since i think it is some system process:confused:
.Please help me to find... (1 Reply)
Discussion started by: kiranjose85
1 Replies
4. Red Hat
Friends ,
Anybody plz tell me what is the basic difference between "service" , "process" and " daemon" ?
Waiting for kind reply .. .. (1 Reply)
Discussion started by: shipon_97
1 Replies
5. Solaris
Hi
I've been using solaris for a few days now. During the install process i had some problems configuring my nic as i needed to install a third-party driver, which i got from a a linked site from the Sun Device Detector tool a ran prior to installing. I got it working eventually, but i'm... (1 Reply)
Discussion started by: jpg.2009
1 Replies
6. Shell Programming and Scripting
Hi,
Please help to seprate my /var/adm/messages output. Than i want to take this
output in the excel.
e,g
cat /var/adm/messages
Sep 4 10:16:52 ibsadm1 inetd: vnetd from 172.17.5.20 38353
Sep 4 10:16:52 ibsadm1 inetd: bpcd from 172.17.5.20 915
Sep 4 10:16:55 ibsadm1 inetd: ... (5 Replies)
Discussion started by: nirjhar17
5 Replies
7. Solaris
Hi Friends,
Please help me to resove this issue ASAP.
Nov 17 16:25:52 server1 sendmail: pAH8Pnh22099: SYSERR: putoutmsg (NO-HOST): error on output channel sending "553 5.1.3 @123.com.... User address required": File too large
Nov 17 16:25:53 server1 sendmail: pAH8Pnh22099:... (1 Reply)
Discussion started by: holds_me
1 Replies
8. Red Hat
Hi,
I am seeing the following errors in my environment, not sure why is it happening, any ideas? Thanks.
kernel: RPC: bad TCP reclen 0x73746174 (non-terminal ) Dec 17 02:14:48 kernel: RPC: bad TCP reclen 0x63480000 (large) Dec 17 02:14:48
kernel: RPC: bad TCP reclen 0x633f0000 (large) Dec... (5 Replies)
Discussion started by: amarlinux
5 Replies
9. Solaris
Below is the error being repeated on my Solaris 9 Sun-Fire-V890 machine.
SAN team confirmed as everything is fine from their end. I did google and found that some people say its a known Oracle bug when you have Oracle 10G installed on your system but I kind of disagree with them. Please see below... (2 Replies)
Discussion started by: vikkash
2 Replies
10. Solaris
Hi,
I am facing issue with one of the drive is solaris 10. it is showing offline in the messages file
scsi: WARNING: /pci@2,600000/QLGC,qlc@0/fp@0,0/ssd@w5006016746e00b1b,0 (ssd0):
drive offline
genunix: WARNING: Page83 data not standards compliant DGC LUNZ 0430
... (1 Reply)
Discussion started by: Prasanth T K
1 Replies
LEARN ABOUT OSF1
syslog_evm.conf
syslog_evm.conf(4) Kernel Interfaces Manual syslog_evm.conf(4)
NAME
syslog_evm.conf - EVM syslog subscription configuration file
SYNOPSIS
facility.priority
DESCRIPTION
The syslog_evm.conf file is a text file that specifies what syslog messages will be forwarded from the syslog daemon to the Event Manager,
EVM,in the form of EVM events. Those syslog messages are posted to the EVM daemon evmd by syslogd if the syslogd forwarding function is
turned on with the -e flag. Events are posted with the EVM name of sys.unix.syslog.facility-name.
This configuration file is read every time syslogd starts, or is restarted by a SIGHUP signal. If the file does not exist, or if it exists
but contains no subscription lines, no syslog messages will be posted to EVM.
Each line in the file controls the forwarding of one syslog event. Lines beginning with the # character are considered comments and are
ignored. Only one subscription per line is permitted. Mixing a subscription and a comment on the same line is not allowed.
Each line has the format facility.priority[+]. Specifies the part of the system that generated the message. Legal values are the follow-
ing: All messages. Messages generated by the kernel. Messages generated by user processes. Messages generated by the mail system. Mes-
sages generated by system daemons. Messages generated by the authorization system. Messages generated internal to the syslog system.
Messages generated by the line printer spooling system. Messages generated by the system news command. Messages generated by the UNIX to
UNIX copy system. Messages generated by the system clock daemon. Messages generated by remote file systems. Available for local use.
Indicates the priority of the message. If the priority is followed by a + character, events which are of the specified priority or higher
are forwarded; otherwise only events which exactly match the priority are forwarded.
The priority level must be one of the following: Forward messages of any priority. Forward messages of emergency priority. Forward
messages of alert priority. Forward messages of critical priority. Forward messages of error priority. Forward messages of warn-
ing priority. Forward messages of notice priority. Forward messages of information priority. Forward messages of debug priority.
EXAMPLES
This example causes syslogd to forward events to EVM as follows: All messages of emergency priority are forwarded. All messages generated
in the kernel which have a priority of info or greater are forwarded. All messages generated by users, by the mail subsystem or by the
system daemons which have a priority of info or greater are forwarded.
*.emerg kern.info+ user.notice+ mail.notice+ daemon.notice+
FILES
Location of the system logger configuration file. Location of the EVM syslog subscription configuration file. Location of the EVM logger
configuration file.
SEE ALSO
Commands: evmd(8), evmlogger(8), syslog(1), syslogd(8)
Routines: syslog(3)
Event Management: EVM(5)
delim off
syslog_evm.conf(4)