Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Solaris SYSLOG Help
Operating Systems Solaris Solaris SYSLOG Help Post 302642353 by fjm1502 on Thursday 17th of May 2012 10:07:02 AM
Old 05-17-2012
Thank you for the response... These are Cisco ASA5585...same as the other firewalls. They both send logs to UNIX and KIWI syslog servers. KIWI gets the logs but it seems as in UNIX, you have to somehow make it accept logs (I am not sure if this statement is true or not). Here is the FW log config that works on UNIX...
logging enable
logging timestamp
logging console debugging
logging monitor debugging
logging buffered notifications
logging trap informational
logging history warnings
logging device-id context-name
logging host inside 10.213.208.41
logging host inside 10.213.9.10
!
Here is the log config on FW that does not work with UNIX (.208.41) & works with KIWI (9.10). The log levels are diff (notice: log facility)...
logging enable
logging timestamp
logging buffered notifications
logging trap notifications
logging facility 22
logging device-id hostname
logging host inside 10.213.208.41
logging host inside 10.213.9.10
 

10 More Discussions You Might Find Interesting

1. Solaris

Syslog-ng does not start Solaris 9

I have been installing syslog-ng on our Solaris 9 servers. All ov them are working except two which return the following error: # /etc/init.d/syslog start syslog-ng service starting. Error binding socket; addr='AF_INET(0.0.0.0:514)', error='Address already in use (125)' ... (6 Replies)
Discussion started by: takendal
6 Replies

2. UNIX for Dummies Questions & Answers

Solaris 10 question on syslog.conf file

Hi, I have a question on /etc/syslog.conf file in Solaris 10. Below is a line taken from /etc/syslog.conf file and I know that the last field (operator) is where the logs gets outputted but how do I find out what the output file name format is going to be and which directory it gets outputted... (1 Reply)
Discussion started by: stevefox
1 Replies

3. Solaris

Solaris Syslog Server

Hi all, I want to implement a Syslog Server but i'm new in this area. I donīt know how to configure it in Solaris. I should like send all the logs to a application(manipule the information, por example: do the alerts, configure it, etc...) How can I do that? or Which manual can help me? Exists... (2 Replies)
Discussion started by: yflores
2 Replies

4. Solaris

Syslog - solaris 9

HI admins, I am facing an issue with syslog on solaris9. It stopped the logging of messages..I tried all ways to start the syslog--/etc/init.d/syslog start, /usr/sbin/syslogd......etc.... But ps -eaf | grep sys not showing the syslog processes.......... When i start syslog using... (13 Replies)
Discussion started by: snchaudhari2
13 Replies

5. UNIX for Dummies Questions & Answers

edit /etc/syslog.conf (Solaris 10)

Hi, Im editing the file /etc/syslog.conf for Solaris 10 server in production. I need to add "auth and authpriv.": someone set the same? Have been successful? I would appreciate any suggestions. Greetings. The unmodified arhive is: (0 Replies)
Discussion started by: musul
0 Replies

6. Solaris

Solaris syslog server and client

Hi folks, I am attempting to setup a Solaris 10 syslog server to receive logs from linux machines. Here's what I did: On the server (SunOS sun226 5.10), IP address: 192.168.212.226: 1. start syslogdby issuing $/usr/sbin/syslogd -T On a client (SunOS sun221 5.8): 1. Configured... (1 Reply)
Discussion started by: kimurayuki
1 Replies

7. Solaris

Solaris syslog messages cluttering screen

Well, this kind of silly but I think I am missing something. So we have this Solaris 10 server which acts as syslog server for network devices. Problem is the syslogs clutters whenever I use the screen utility for any work. I am posting the conetent of /etc/syslog.conf # more... (3 Replies)
Discussion started by: admin_xor
3 Replies

8. UNIX for Dummies Questions & Answers

Syslog in Solaris 11.1

Hi, I have a solaris 11.1 server with many network interfaces (real and virtual), and one is connected to another server. i need that syslog send the info through one specific interface, i know that in the syslog.conf file can write: *.* @xxx.xxx.xxx.xxx (remote server IP) but... (0 Replies)
Discussion started by: iocx
0 Replies

9. UNIX for Advanced & Expert Users

Syslog in Solaris 11.1

Hi, I have a solaris 11.1 server with many network interfaces (real and virtual), and one is connected to another server. i need that syslog send the info through one specific interface, i know that in the syslog.conf file can write: *.* @xxx.xxx.xxx.xxx (remote server IP) but... (1 Reply)
Discussion started by: iocx
1 Replies

10. Solaris

How can i send Solaris syslog loging server?

HI how can i send solaris syslog to centralized logging server? i have tried adding like below and got error: *.err;kern.debug;daemon.notice;mail.crit @172.16.200.50:5000 and the error i got in /var/adm/messages is: Jun 10 13:02:24 aresdb-new.alshaya.com syslogd: line 14:... (10 Replies)
Discussion started by: bentech4u
10 Replies

LEARN ABOUT ULTRIX

eli

eli(8)							      System Manager's Manual							    eli(8)

Name
       eli - error log initialization program

Syntax
       eli [ options ]

Description
       The command initializes error logging.  This command enables error logging of hardware and system-related error packets, or error messages,
       from the kernel errorlog buffer.  It can also disable error logging, reconfigure error logging parameters, or initialize the kernel  error-
       log buffer.

Options
       -d     Disables error logging.

       -e     Enables error logging in multiuser mode.

       -f     Forces the subsequent option; the system will not prompt.  This is the only command option you can use with another option.

       -h     Prints information about the command.

       -i     Initializes the kernel errorlog buffer.  The previous contents of the errorlog buffer are lost.

       -l     Logs a one-line status message to the kernel errorlog buffer.

       -n     Only supported for local error logging.  Disables logging error packets to disk by the daemon. High priority error messages continue
	      to be printed at the console.  Note that error log packets can be viewed by using the option in real time, but are never written	to
	      the disk.  For this reason, this option is rarely used.

       -q     Suppresses the periodic display, on the console, of the missed error message that results from a full kernel errorlog buffer.

       -r     Reconfigures error logging.  Use this option after changing the file.

       -s     Enables error logging in single-user mode.

       -w     Enables the missed error message to appear on the console every 15 minutes.  This option is the opposite of

Examples
       This example logs a one-line message into the errorlog file.
       eli -f -l "This is a test message"
       This example logs a message, up to and including the first new line, from the file
       eli -f -l < myfile > /dev/null

Restrictions
       You must have superuser privileges to use the command.

       Only the -f option can be used with other options.  You must use the syntax shown in the examples above.

Diagnostics
       eli: Request Aborted.
       The requested action was aborted.  The reason for the aborted command is included with the output.

Files
See Also
       elcsd.conf(5), elcsd(8), uerf(8)
       Guide to the Error Logger

																	    eli(8)
All times are GMT -4. The time now is 11:42 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy