[syslog-ng]some basic questions syslog-ng
Ravi Malghan
rmalghan@yahoo.com
Fri, 13 Jul 2001 08:25:00 -0700 (PDT)
So if I want to accept syslog messages on syslog-ng
server X/port: 1111 from host 192.168.1.1, port: 2222
and host 192.168.10.1, port: 2222.
I will have the following on server X
source host10 {tcp(ip(192.168.1.1) port(2222);
tcp(ip(192.168.10.1) port(2222); };
destination host10logs { file("/var/adm/host10.log"
compress(on) sync(0); };
log {source(host10);destination(host10logs); };
Is this correct? I will similarly set the destination
on the client machines to have destination
{tcp(ip(server X) port (1111);}
What does filter host10 {host("192.168.1.1"); }; give
me ?
Thanks
Ravi
--- "Hamilton, Andrew Mr RAYTHEON 5 SIG CMD"
<HamiltonA@hq.5sigcmd.army.mil> wrote:
> 1. The client syslog-ng makes a TCP connection to
> the server which is
> listening for a TCP request.
> 2. Standard syslog is UDP and doesn't do TCP. You
> have to have syslog-ng on
> both the client and the server.
> 3. The port is the same as the UDP port, 514. You
> can have both types on
> the same port. Yes you do have control over it.
> You can change the source
> port on the server and change the destination port
> on the client.
>
> Regards,
> Drew
> -----Original Message-----
> From: Ravi Malghan [mailto:rmalghan@yahoo.com]
> Sent: Thursday, July 12, 2001 9:58 PM
> To: syslog-ng@lists.balabit.hu
> Subject: [syslog-ng]some basic questions syslog-ng
>
>
> Hi I have few basic questions about syslog-ng. If
> somebody can give me answers or give me some
> pointers.
> I am using syslog-ng to log syslog messages from a
> client to server and a firewall between them.
> 1. How is the sysloging TCP instead of UDP? Is this
> something the syslog-ng needs to be configured.
> 2. The client which initiates the syslog logging, is
> this normal syslog client? or do I need to install
> syslog-ng there too?
> 3.When it uses TCP, which port does it use? Does the
> user have control over the port number?
>
> Thanks in advance
> Ravi
>
>
> __________________________________________________
> Do You Yahoo!?
> Get personalized email addresses from Yahoo! Mail
> http://personal.mail.yahoo.com/
>
> _______________________________________________
> syslog-ng maillist - syslog-ng@lists.balabit.hu
> https://lists.balabit.hu/mailman/listinfo/syslog-ng
>
> _______________________________________________
> syslog-ng maillist - syslog-ng@lists.balabit.hu
> https://lists.balabit.hu/mailman/listinfo/syslog-ng
__________________________________________________
Do You Yahoo!?
Get personalized email addresses from Yahoo! Mail
http://personal.mail.yahoo.com/