I have successfully configured a syslog server on Centos 5.7, I have to add few clients which are CISCO switches - can someone suggest how should I configure on SYSLOG server[/etc/syslog.conf], so the each client's log messages should go to different location on syslog server not a default location /var/log/messages files.
Since the OP mentioned /etc/syslog.conf in their post, I suspect that they are not using the rsyslog package. As far as I recall rsyslog is an optional package on this version of CentOS.
The current setup I have configured is basic syslog, is their any basic configuration setup steps for configuring rsyslog server, can someone please provide.
The latest version of rsyslog available in repositories is 3.22.1-3.el5_6.1, I will go ahead and install it and any another rpm's do I need install along with rsyslog.
Code:
# yum list | grep rsyslog
rsyslog.x86_64 3.22.1-3.el5_6.1 base
rsyslog-gnutls.x86_64 3.22.1-3.el5_6.1 base
rsyslog-gssapi.x86_64 3.22.1-3.el5_6.1 base
rsyslog-mysql.x86_64 3.22.1-3.el5_6.1 base
rsyslog-pgsql.x86_64
#
Yum will take care of the dependencies. But first make sure that you are removing "syslog" from the system. The default settings of rsyslog are suitable in most of the cases.
I have installed and rsyslog and log analyzer as well.
I have noticed few issues with rsyslog server
1. I have added 2 centos client in /etc/rsyslog.conf file, and location I pointed it to two different files, which is not /var/log/messages file. But I still see the log messages of the centos client in /var/log/messages file. Here is the o/p the rsyslog.conf file.
Code:
# more /etc/rsyslog.conf
# Use traditional timestamp format
$ActionFileDefaultTemplate RSYSLOG_TraditionalFileFormat
# Provides kernel logging support (previously done by rklogd)
$ModLoad imklog
# Provides support for local system logging (e.g. via logger command)
$ModLoad imuxsock
#UDP log
$ModLoad imudp
$UDPServerRun 514
#TCP log
$ModLoad imtcp
$InputTCPServerRun 514
#rsyslog clients, Process remote messages
:fromhost-ip, isequal, "10.99.55.186" /var/log/syslogclient1.log
:fromhost-ip, isequal, "10.99.55.210" /var/log/syslogclient2log
# Log all kernel messages to the console.
# Logging much else clutters up the screen.
#kern.* /dev/console
# Log anything (except mail) of level info or higher.
# Don't log private authentication messages!
*.info;mail.none;authpriv.none;cron.none /var/log/messages
# The authpriv file has restricted access.
authpriv.* /var/log/secure
# Log all the mail messages in one place.
mail.* -/var/log/maillog
# Log cron stuff
cron.* /var/log/cron
# Everybody gets emergency messages
*.emerg *
# Save news errors of level crit and higher in a special file.
uucp,news.crit /var/log/spooler
# Save boot messages also to boot.log
local7.* /var/log/boot.log
2. If I need to add cisco switches as client to rsyslog server, do I need to install rsyslog client on those switches as well??
I am trying to configure central syslog server
On hostA, in /etc/syslog.conf file,I am adding below line*.err;kern.debug;daemon.notice;mail.crit @hostB
then I am restarting syslog servicesvcadm restart /system/system-log
In hostA, I have already added hostB entry in /etc/hosts... (5 Replies)
I want to configure and run sshd server on my unix box. I already have that installed.
# yum -y install openssh-server openssh-clients
Loaded plugins: fastestmirror, presto, refresh-packagekit
Loading mirror speeds from cached hostfile
* base: centos.mirror.constant.com
* epel:... (1 Reply)
Hi,
I would like to configure syslog linux client, syslog server is windows server.
so adding on linux client in /etc/syslog.conf @hostname will work in the place of directory location.
example of /etc/syslog.conf
# Log all kernel messages to the console.
# Logging much else clutters up... (2 Replies)
Configuring Ubuntu 9.04 as a TFTP Server
Im trying to configure my Ubuntu desktop as a tftp server.
I found the following instructions on how to do this. Most of the instructions I understand however Im not sure about step 2. The instructions are below:
In step 2 do I create a txt file in vi... (2 Replies)
I need to configure an NTP daemon on a "bridge-PC" connected on 2 LANs. It is expected to read the correct time on a time server on the first LAN and behave as a server for the second LAN.
Can I do both the things with ntpd?
In other words, is ntpd able to work as client and server at the same... (3 Replies)
Hi experts,
I want to configure a boot server, tried googling for some document for steps and all leads to JumpStart server.
Any help with be much appreciated
Thanks (9 Replies)
HI All
I need help to understand how the ldap works in Solaris 9 & Solaris 10.
Kindly provide me some helpful commands related to LDAP
Regards
Jagan (2 Replies)
Hi,
I need to configure a apache web server.
My server name is www.example.com
I want to use port 7001 for the http requests and not port 80.
I dont want to enter the port number when trying to access this URL.
that is instead of giving www.example.com:7001 ,i want to give only... (3 Replies)
Hi folks!
I have a Postfix email server running on my MacOs x box.
I would like to customize this automatic message to portuguese language:
============
This is the Postfix program at host myserver.com.
I'm sorry to have to inform you that the message returned
below could not... (4 Replies)
02-24-2012
