[syslog-ng]Sylog-ng OpenBSD Problems

Wed, 28 Apr 2004 19:57:52 +0200

Hello me

thanks for your fast reply.
But to be honest i had no luck :-(

# cat /etc/test
options { 
use_fqdn(no); 
use_dns(no); 
dns_cache(no); 
keep_hostname(yes);
long_hostnames(off); 
sync(1); 
};
source s_udp { udp(); }; 
destination smc { file("/var/log/info"); };
log { source(s_udp); destination(smc); };
# syslog-ng -f /etc/test
Warning: No source refers to internal messages, they'll go
to /dev/null
# tail -f /var/log/info
Apr 28 19:31:01 syslog 62784: Apr 28 19:50:02:
%SEC-6-IPACCESSLOGP: list 150 denied udp
192.168.163.1(3381) -> 255.255.255.255(712), 1 packet
Apr 28 19:31:01 syslog 1562183: Apr 28 19:50:03:
%ISDN-6-CONNECT: Interface Serial1/1:27 is now connected to
0800321321 test32ABC
Apr 28 19:31:02 syslog 1562184: Apr 28 19:50:03:
%LINK-3-UPDOWN: Interface Async163, changed state to up
Apr 28 19:31:07 syslog 1562188: Apr 28 19:50:08:
%LINEPROTO-5-UPDOWN: Line protocol on Interface
Serial2/1:14, changed state to up
Apr 28 19:31:08 syslog 163080: Apr 28 17:50:09:
%SEC-6-IPACCESSLOGP: list 150 denied udp 10.150.9.3(4031)
-> 255.255.255.255(161), 1 packet

as you can see i done everything you told me, i always get
the same problem, this is a standart installation of
OpenBSD no special changes where made, nothing.

Any more Ideas?

Greets

Johannes

On Wed, 28 Apr 2004 18:54:16 +0200 (MEST)
 "me" <e.diot@gmx.net> wrote:
> Hi,
> 
> check these options out...
>
http://www.balabit.com/products/syslog_ng/reference/x601.html:
> 
> options { 
> 	use_fqdn(no); 
> 	use_dns(no); 
>  	dns_cache(no); 
> 	keep_hostname(yes);
> 	long_hostnames(off); 
> 	sync(1); 
> };
> 
> You have to disable these options as shown above.
> Hope this helps...
> 
> /me
> 
> > Hello,
> > 
> > I run syslog-ng-1.5.24 on OpenBSD 3.4 sparc64,
> > i have some problems, its not working in the way i want
> it,
> > my config looks in this way:
> > 
> > options { 
> > long_hostnames(off);
> > chain_hostnames(off);
> > use_fqdn (yes);
> > sync(0); 
> > };
> > source s_udp { udp(); }; 
> > destination test { file("/var/log/info"); };
> > log { source(s_udp); destination(test); };
> > 
> > no biggie at all
> > 
> > tail -f /var/log/info shows:
> > Apr 28 16:23:18 syslog/syslog 1552866: Apr 28 16:42:18:
> > %LINEPROTO-5-UPDOWN: Line protocol on Interface
> > Serial1/1:14, changed state to down
> > Apr 28 16:23:23 syslog/syslog 1552872: Apr 28 16:42:24:
> > %LINK-3-UPDOWN: Interface Serial1/0:2, changed state to
> > down
> > 
> > There is no Router source IP, just syslog/syslog syslog
> is
> > the name of the logging box
> > 
> > # uname -a
> > OpenBSD syslog.srv.test.com 3.4 GENERIC#85 sparc64
> > 
> > when i run that box with the normal syslogd the source
> ip,
> > gets shown, and even when i erase all options in
> > syslog-ng.conf :
> > source s_udp { udp(); }; 
> > destination test { file("/var/log/info"); };
> > log { source(s_udp); destination(test); };
> > 
> > the source ip never comes in, i just want the sourceip
> no
> > dns name nothing any ideas?
> > 
> > Greets
> > 
> > Johannes
> > --
> > Die e-Mail-Boxes von Brennercom sind Virus-gesichert
> und Spam-gefiltert.
> > Le caselle e-Mail di Brennercom sono protette da
> sistemi antivirus e
> > antispam.
> > 
> > http://www.brennercom.it
> > _______________________________________________
> > syslog-ng maillist  -  syslog-ng@lists.balabit.hu
> > https://lists.balabit.hu/mailman/listinfo/syslog-ng
> > Frequently asked questions at
> http://www.campin.net/syslog-ng/faq.html
> > 
> 
> -- 
> NEU : GMX Internet.FreeDSL
> Ab sofort DSL-Tarif ohne Grundgebühr:
> http://www.gmx.net/dsl
> 
> _______________________________________________
> syslog-ng maillist  -  syslog-ng@lists.balabit.hu
> https://lists.balabit.hu/mailman/listinfo/syslog-ng
> Frequently asked questions at
> http://www.campin.net/syslog-ng/faq.html
> 

--
Die e-Mail-Boxes von Brennercom sind Virus-gesichert und Spam-gefiltert.
Le caselle e-Mail di Brennercom sono protette da sistemi antivirus e antispam.

http://www.brennercom.it