CentOS 5 Networking :: Syslog-ing Messages From A Particular Host To A Particular Log File
Oct 12, 2009
I've just configured my Linksys RVS-4000 router to syslog messages to remote syslogd server (i.e. my CentOS5 machine). Redirecting messages was easy, but now I'm having difficulties to redirect those same messages received from Linksys to a separate log file. By default, all these messages are logged to /var/log/messages, and after browsing manual pages for syslog, syslog.conf, and syslogd, came to suspect that what I want isn't possible.
View 1 Replies
ADVERTISEMENT
Feb 16, 2011
I am facing an issue with my syslog server. The server is collecting remote log also. and the issue is no log messages are updated in /var/log/messages file. But other files are getting updated.
[root@Server1 ~]# cat /etc/syslog.conf
# Log all kernel messages to the console.
# Logging much else clutters up the screen.
[code]....
View 13 Replies
View Related
Jul 2, 2011
I am facing a problem while trying to log SSH messages in a separate file, say, /var/log/ssh_logs. I have tried modifying the syslog-ng.conf file as follows:
filter f_ssh { facility(auth, authpriv) and match("sshd[[0-9]+]:"); };
destination d_ssh { file ("/var/logs/sshd_logs"); };
log {
[code]....
But still I am not able to get the ssh logs in the new file. They continue to go to /var/log/auth.
View 1 Replies
View Related
Jan 6, 2009
Got a Ubuntu system. Have a device on my LAN that can send Syslog messages.
I would like to:
1. Capture these specific syslog messages.
2. Keep them separate from any other syslog activity on the Ubuntu system.
3. View these syslog messages later.
View 1 Replies
View Related
Aug 24, 2009
I wrote a script which will run in ubuntu box and will display in tty1, without loading the gdm. The problem is when I plugged in a usb drive it will cause some messages to be printed into the current tty user logged in.
Like : [sdb] Assuming drive cache: write through
This is really disturbing when a user is running the script. Is there anyway that I can direct all the messages to some other tty which I don't use.
View 2 Replies
View Related
Feb 8, 2011
What is the easiest way in Linux to convert syslog messages to XML?
View 1 Replies
View Related
Mar 30, 2009
I want read the log messages to my 'c' application , i am using the fedora core 8 operating system , how to read the system log messages(syslog) through my application.
View 3 Replies
View Related
Aug 3, 2010
Is there a way to send syslog messages through SNMP? I'm not finding much info online around this. A co-worker said it was easy to do. RHEL5.5
View 1 Replies
View Related
Dec 9, 2009
I have the following BIND messages filling up my SysLog that I'm hoping someone can explain to me:
Code:
Dec 9 09:35:44 dns2 named[30103]: client 67.130.224.5#49551: query (cache) 'www.domain.com/A/IN' denied
Dec 9 09:35:47 dns2 named[30103]: client 67.130.224.5#64561: query (cache) 'www.domain.com/A/IN' denied
[code].....
I would expect this behavior if "domain.com and anotherdomain.com" wasn't a domain that I hosted. But this is a valid domain that this server should be answering for. In my named.conf I do have the
Quote:
allow-query { any; };
option on every zone. This is my slave server and I have the primary shut off so I can test this slave server. FYI: So far queriers still seem to be working. The pages for the sites are still coming up via the internet.
View 1 Replies
View Related
May 2, 2010
On this Ubuntu 8.04.4 LTS server, I want to log the messages from a Linksys router. So I made this change to "/etc/init.d/sysklogd" SYSLOGD="-r" Then in "/etc/syslog.conf" I added the following to the top of the file: Code: if $fromhost isequal 'Linksys' then /var/log/Linksys.log & ~
Then I rebooted the server. But there is no "/var/log/Linksys.log" file.
View 4 Replies
View Related
Jan 29, 2011
I have my system set up to where the router(dd-wrt) will send it's syslog messages to my Linux PC system. I am using shorewall as my firewall. I have two questions: How can I configure shorewall to allow the messages from my router? If I use my router IP address to allow the messages to come through the firewall, will this be a great security risk as anything from the internet can come through on that router ipaddress?
View 1 Replies
View Related
Apr 28, 2010
RHEL 5.4 i want to be able to do redistribution of inbound syslog messages to syslogd. as example, my syslog.conf has in it at the end:
*.* @192.168.5.5
*.* @192.168.5.6
my sysconfig/syslog file has "-r" as the only option for syslogd. any messages generated by the localhost will be sent to the two remote servers, but messages that come into this box (udp 514) only get logged locally and do not get sent out to the remote hosts.
you may ask why do i want to do this. because i have several syslog servers (for security purposes) and many of my net devices are configured to send syslog to all the syslog servers, hence each device is sending way too much duplicate udp-514. so i would like to minimize the udp-514 coming out of the devices, have all devices send to a central syslog server, and then central syslog server do distribution to the other syslog servers. others have also called this "syslog proxy". or, if not with syslogd, how to achieve this (preserving the original syslog message host info, etc)?
View 1 Replies
View Related
Feb 9, 2010
I'm getting 10000000's of syslog messages :
"eth0: PHY reset until link up"
- I have wireless and don't normally use an ethernet cable. From Googling round I found this bug report https://bugs.launchpad.net/ubuntu/+s...ux/+bug/270184 which appears to match the problem, however I do not feel happy/competent enough to recompile the driver as suggested in the bug fix. Is there a way to configure the driver so that it only tries the eth0 connection a limited number of times? This is Ubuntu 8.04 2.4.26-27 and SIS 191 chipset
View 4 Replies
View Related
May 9, 2010
What i'm trying to accomplish seems rather silly but is needed for my little project here.
I'm using OpenSuSE 11.2 as a media center PC and need it to login automatically(console not X). That one i accomplished without problems.
However, after login i can see all the info about the services that were started and that needs to "go away".
One could do a "clear" in the .bash_rc and or .bash_profile but it will still show the login prompt which i don't want to see either (i don't even want to see the blinking cursor as well).
Question: How do i accomplish that so that the login console shows only the "splash screen" without any output of the kernel,rc.status nor the "issue-file"... just a plain blank screen ?
View 6 Replies
View Related
Oct 24, 2010
I need to be able to send snmp traps based on certain severity or content of syslog messages. Can this be done from standard linux? Alternatively, are there MIB's out there that support syslog events so I can get the status from snmp?
View 1 Replies
View Related
May 4, 2009
GNOME has adopted the pulseaudio infrastructure and it has grave errors reading from ALSA sinks. One of the many effects is that every 2 or 3 seconds a 3 line error message is written to the syslog to the effect of 'ALSA woke us up...blah blah blah' and it is filling up everyone's syslog. What I need is a workaround to just stop these messages from being written so I can level set and figure out a long term course of action.
View 2 Replies
View Related
Jun 22, 2010
I'm running a cobalt raq550 web server (Linux version 2.6) and I want to install a syslog program on it, something that could log messages and send me an instant email in response to certain messages it receives. Is there such a program?
View 6 Replies
View Related
May 5, 2009
trying to replace syslog with syslog-ng. When I:
yum erase syslog,
wants to remove everything else that (presumably) has syslog as a dependency. how do I replace the dependency on syslog with a dependency on syslog-ng?
View 3 Replies
View Related
Sep 21, 2010
What does these messages in PING mean?
Code:
PING 192.25.141.248 (192.25.141.248) 56(84) bytes of data.
From 192.25.141.229: icmp_seq=1 Redirect Host(New nexthop: 192.25.141.248)
[code]....
View 4 Replies
View Related
Mar 18, 2010
I wish to prevent the samba messages (mainly nmbd and winbindd) from appearing in the system log (/var/log/messages). I want to allow samba logging to the standard samba logfiles, but prevent the syslog getting clogged up by samba. I added syslog = 0 to smb.conf and reloaded the config but the messages were still appearing. I also tried the following (and restarted the syslog via /sbin/service syslog restart) # Suppress messages from samba.
nmbd.* /dev/null
smbd.* /dev/null
winbindd.* /dev/null
For interests sake the messages I'm getting are below (I'm not concerned about the messages themselves, I can chase them up at my leisure via the samba logs) Mar 18 09:58:29 SERVER nmbd[3808]: query_name_response: Multiple (2) responses received for a query on subnet xx.yy.z.zz for name DOMAIN<1d>. Mar 18 09:58:29 SERVER nmbd[3808]: This response was from IP xx.yy.z.zz, reporting an IP address of xx.yy.z.zz.
View 1 Replies
View Related
Oct 16, 2010
On my bare metal server, I get about 130MB/s read from a software RAID 10 array, but when reading the same file from a VM via NFS over the VirtIO interface,I only get about 40MB/s.
Furthermore, the process for the VM uses >180% CPU on the host, and ~40%, and the 5 min average is ~1.5 on the host and guest. I have dual E5620's so I'm disappointed that the transfer is so slow, as I was expecting at least 90MB/s.
I'm new to being a sysadmin, so if anyone has some tips I can use to increase the transfer rate, and possibility reduce the CPU load as well I'd appreciate it. I'm assuming that 130MB/s is the max speed of two 7.2k HDDs, but if there's any way I can squeeze any more out that would be great too.
System specs:
2x Intel Xeon E5620s @ 2.40Ghz
8GB of RAM @ 1066Mhz
4x 1TB Western Digital Black HDDs in RAID10
View 2 Replies
View Related
Nov 8, 2010
I'm wondering why I keep getting the following in /var/log/messages on a system running the latest CentOS 5 64 bit kernel:
Nov 8 09:50:24 hostname kernel: myri10ge: eth2: link down
Nov 8 09:50:24 hostname kernel: myri10ge: eth2: link up
Nov 8 09:50:34 hostname kernel: myri10ge: eth2: link down
[Code]....
View 5 Replies
View Related
Feb 9, 2010
I tried to post this then couldn't find it anywhere, so I will try again. I am wondering if there is a way to determine what file system type was put on a volume when the file system was made? I have a MD0 device that wouldn't mount. I was receiving "wrong file system type" messages.
I tried df but this only works with mounted file systems correct? I am looking for a command to run on a drive/volume that is not mounted so I can figure out what file system is on it.
This time I was able to: mount /dev/md0 /mnt/storage without and entry in the fstab file. I then just entered mount and it displayed the file system as jfs.
Is there another way to determine the file system type?
View 1 Replies
View Related
Mar 11, 2010
Here the description of the issue I am having.I am writing a bash test script which reads lines from a file, builds ISO messages, sends them to a server, reads the response with response code and reports the result of the test to a file or on the screen.The message that I need to send is 94 characters long.Here's the portion of a code that I initially wrote:
#~ Open socket.
exec 3<>/dev/tcp/172.26.0.25/9991
#~ Send msg.
[code]...
View 4 Replies
View Related
Feb 18, 2010
My centos host (running under VMware) is called localhost.localdomain I've tried to rename this is a myriad of ways:
* I've altered HOSTNAME variable in /etc/sysconfig/network
* I've created a file called /etc/hostname with the new name
* I've modified /etc/hosts
* I've written the new name to /proc/sys/kernel/hostname
* I've used sysctl -w kernel.hostname=NEWNAME
* I've run hostname NEWNAME
and yet after reboot the name remains localhost.localdomain
View 10 Replies
View Related
Feb 1, 2011
I'm setting up apache on centOS 5.5 and administering it from another host on my LAN(this web server has no Xorg). I can ping from the config host to the web server but not the other way. My network is quite a way from being set up so i'm just configuring the web server at the moment, the simplest way i can. It's just trying to get two LAN hosts both with 192.168.1.0/24 I.Ps to talk to each other using a router to connect them.
Here are the outputs of ifconfig and netstat -rn for the web server, the config host and the router:
The ifconfig -a and netstat -rn of the config host are:
lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 16384
inet6 ::1 prefixlen 128
inet6 fe80::1%lo0 prefixlen 64 scopeid 0x1
[code]....
View 5 Replies
View Related
Jan 13, 2010
I have an HP BL460c G5 with 5.3 installed fresh
it can ping its own IP address just fine
its a bit slow but constant pinging the switch its connected to
and i get alot of Destination host unreachables(a few do get through) when pinging the gateway
port on the switch is hardcoded to GB/full. and the server itself reads that its connecting at GB/full.
View 10 Replies
View Related
Jul 30, 2010
I have 5 1955 blades in an enclosure for an custom application cluster.All were running Centos 4.4 no problem.We wanted to start upgrading them cleanly to 5.5 so two of them got fresh installs of 5.5.The installs went well enough, no glaring errors.However they can only ping each other! The network settings are fine, no firewall or selinux. I'd run the info script but I can neither download it to them nor paste it in via kvm.Standard static entries, virtually identical to their 4.4 brethren. They ping each other so network drivers are fine, no built in switch configuration changes. It has to be some kind of network configuration issue that i'm just not seeing.
Edit* When i try and ping anything else, including the other blades, I get Destination Host Unreachable.
View 5 Replies
View Related
Jan 31, 2010
Instructions say "Add hostname for the NIC card into /etc/hosts file" do I touch or mkdir it in?
View 11 Replies
View Related
Dec 11, 2010
I am looking for an open source syslog server which accumulate the each and every log of Windows, Solaris, Linux and network devices. Currently I am using Syslog-ng which is not fulfiling my requirement in Windows clients, as I need the logs of every action which user performed after logon.
View 2 Replies
View Related
