Logging from a sun or hp unix host to syslog-ng
Hi Everyone, I have setup a syslog-ng server on sun solaris 9. I now would like to log from a sun solaris box or a hp box on the network. These boxes are setup to send messages to the server. When I do a snoop on port 514 on the syslog-ng server I see that these boxes are sending messages but the server is not storing this info. into a file. The problem must lie with the syslog-ng.conf. I am able to log from cisco pix firewalls without any problem. I assume that the configuration must be Different for logging from hosts then. Does anyone have an idea?, if so what should the configuration be for logging from these boxes. Regards, Conrad ================================================================== This e-mail and its contents are subject to the Telkom SA Limited e-mail legal notice available from mailto:legalnotice@telkom.co.za or http://www.telkom.co.za/TelkomEMailLegalNotice.PDF
On Thu, Mar 18, 2004 at 11:04:16AM +0200, Conrad Tiflin (CF) wrote:
The problem must lie with the syslog-ng.conf. I am able to log from cisco pix firewalls without any problem. I assume that the configuration must be Different for logging from hosts then. Does anyone have an idea?, if so what should the configuration be for logging from these boxes.
IIRC, PIXes can do syslog over TCP, but your HP and Sun boxen surely cannot with the standard syslogd. I'd guess you have a TCP but not a UDP source. source src { sun-stream("/dev/log" door("/etc/.syslog_door")); internal(); # you need this udp(); }; -- Nate "A round man cannot be expected to fit in a square hole right away. He must have time to modify his shape." - Samuel Clemens
participants (2)
-
Conrad Tiflin (CF)
-
Nate Campi