Hi
there,
I just compiled and
installed syslog-ng-1.5.9. Everything seems to be working ok
but I'm not able to
receive any traps from my cisco devices. I tried multiple
devices
and nothing seems to
be getting to the syslog server. I know that they work fine
with regular syslog
on o0ther machines. I'm using Solaris 2.6.
Here is a
config file I found on this list and tried to use:
options {
time_reopen ( 0
);
sync (
0 );
chain_hostnames ( no
);
use_dns ( yes
);
use_fqdn ( yes
);
};
###########################################
# Global Source statments
for the program
###########################################
source src {
sun-streams ( "/dev/log" door( "/etc/.syslog_door"
));
internal
(
);
#
tcp ( max-connections( 1000
)
);
udp
(
);
};
destination
d_all_ms
{
file("/logs/machine_specific/$HOST/all.$YEAR$MONTH$DAY"
group(systems) perm(0664) dir_perm(0664) create_dirs(yes) );};
destination
d_cisco
{ file("/logs/cisco/cisco.messages" );};
# CISCO (local7) messages:
filter f_cisco {
facility(local7); };
# NO CISCO (local7) messages:
filter f_no_cisco
{ not facility(local7); };
#Forward all messages to machine specific log
monitored by system admins
log {
source(src);
filter(f_no_cisco);
destination(d_all_ms);
};
# Log all messages coming in on local7 facility to
/logs/cisco/cisco.messages
log {
source(src);
filter(f_cisco);
destination(d_cisco);
};
The only messages
I'm getting is from d_all_ms for the local machine:
Sep 18 12:22:44
sys-backup syslog-ng[10513]: STATS: dropped 0
Sep 18 12:22:45 sys-backup
syslog-ng[10513]: STATS: dropped 0
Sep 18 12:22:46 sys-backup
syslog-ng[10513]: STATS: dropped 0
Sep 18 12:22:47 sys-backup
syslog-ng[10513]: STATS: dropped 0
Any help would be
very appreciated !