[syslog-ng] Syslog-ng beginners guide

Charles Jennings jennings.charles.e.security at gmail.com
Fri Jul 10 20:03:02 CEST 2009 

I use vuurmuur - great iptables front-end. 

-----Original Message-----
From: syslog-ng-bounces at lists.balabit.hu
[mailto:syslog-ng-bounces at lists.balabit.hu] On Behalf Of
john.li at fifasci.com.ph
Sent: Friday, July 10, 2009 6:11 AM
To: Syslog-ng users' and developers' mailing list
Subject: Re: [syslog-ng] Syslog-ng beginners guide


> On Tue, 2009-07-07 at 09:49 +0300, Cosmin Neagu wrote:
>> Sorry for answering so late.
>> You were right guys about the firewall, on the Fedora server iptables 
>> was on, and as soon as I turned it off, everything worked great.
>> Know i have to learn how to configure iptables, cause i don't want to 
>> leave it off.
>> Anyone knows a good starting point for iptables?
>>
>>
>>
>> And another thing that bothers me...why the hell does the cpu stays 
>> most of the time at 100% because of the syslog-ng process?
>>
>> top - 09:42:37 up 55 min,  2 users,  load average: 1.10, 1.07, 0.98
>> Tasks: 134 total,   3 running, 131 sleeping,   0 stopped,   0 zombie
>> Cpu(s): 12.3%us, 39.0%sy,  0.0%ni, 48.6%id,  0.0%wa,  0.0%hi,  
>> 0.2%si, 0.0%st
>> Mem:   2060488k total,   850036k used,  1210452k free,    77172k
>> buffers
>> Swap:  2931820k total,        0k used,  2931820k free,   460408k
>> cached
>>
>>   PID USER      PR  NI  VIRT  RES  SHR S %CPU %MEM    TIME+
>> COMMAND
>>  2527 root      20   0  3344 1268  848 R  100  0.1  32:13.86
>> syslog-ng
>>  3028 root      20   0  305m  34m  11m S    2  1.7   1:04.90
>> Xorg
>>    22 root      15  -5     0    0    0 S    0  0.0   0:00.12
>> ata/1
>>  3788 cosmin    20   0  221m 102m  26m S    0  5.1   1:12.27
>> firefox
>>
>> I have a dual core processor, and either CPU1 or CPU2 stays at 100% 
>> utilization...
>
> This seems to be a bug, however I don't know anything similar in 2.0.
>
> Can you please post your configuration file which shows this symptom? 
> Do you get this right after you start syslog-ng? Is it always
reproducible?
> Can you list the exact version you are using and the way you got it 
> compiled? Is it a distribution package?
>
> So as you may see, we're happy to help you, but we need more 
> information.
>
> --
> Bazsi
>
> ______________________________________________________________________
> ________ Member info: 
> https://lists.balabit.hu/mailman/listinfo/syslog-ng
> Documentation:
> http://www.balabit.com/support/documentation/?product=syslog-ng
> FAQ: http://www.campin.net/syslog-ng/faq.html
>
>
I used shorewall to manage iptables of each and every servers i have, I used
the example config for single interface and modify it on my preferences.



____________________________________________________________________________
__
Member info: https://lists.balabit.hu/mailman/listinfo/syslog-ng
Documentation:
http://www.balabit.com/support/documentation/?product=syslog-ng
FAQ: http://www.campin.net/syslog-ng/faq.html

More information about the syslog-ng mailing list