[syslog-ng]Difficulty with source(net) on Solaris 8 [syslog-ng-1.4.9a]
Balazs Scheidler
bazsi@balabit.hu
Thu, 13 Sep 2001 15:41:56 +0200
On Wed, Sep 12, 2001 at 11:06:29AM -0700, Ken Paris wrote:
> I tried your sample config, and still get no messages logged from external
> sources.
>
> ps -aef | grep syslog
> kparis@dv-netlog$ proc syslog-ng.
> root 23643 1 0 10:55:03 ? 0:00 /usr/local/sbin/syslog-ng -
> f /usr/local/etc/syslog-ng.conf -p /var/run/syslog-n
>
> in the log I get only
> Sep 12 10:55:03 dv-netlog syslog-ng[23643]: syslog-ng version 1.4.9a starting
>
> when I snoop interface and change a cisco config, I get:
>
> kparis@netlog$ sudo snoop 112.139.47.241
> Using device /dev/hme (promiscuous mode)
> 112.139.47.241 -> netlog SYSLOG C port=57785 <5>660: Sep 12 10:52
try truss-ing syslog-ng whether it receives packets. you should see
recvfrom() calls when a message arrives.
--
Bazsi
PGP info: KeyID 9AF8D0A9 Fingerprint CD27 CFB0 802C 0944 9CFD 804E C82C 8EB1