Server :: Getting Logwatch Working With Shorewall Logs?
Sep 9, 2010How to get logwatch working with shorewall logs. I tried fwlogwatch but could not get that working.
View 1 Replies
ADVERTISEMENT
Ubuntu Servers :: Logwatch Emails Not Sent If Named Logs Are Included?
Jun 15, 2011I've suddenly stopped getting emails from logwatch which runs on an Ubuntu server daily using cron.After a good day or so of troubleshooting, I was able to establish that it was the 'Service = named' line in my logwatch.conf file, which was stopping the emails from coming through. If I commented out this line, the logwatch emails come through with no issues, uncomment, and I don't get an email. I don't get any error from logwatch itself when I run it, even with '--debug high', leading me to think that my email configuration is setup ok, at least. Furthermore, I tried running logwatch with '--output file --format html' and logwatch produces a valid html file.
I then thought: "Could I have a entry in my Bind/named log files which could be rejected by my ISP's smtp server?". So, (to the best of my knowledge) I cleared out the log files in /var/log that contained messages from named. I then ran logwatch (including the named service in my logwatch.conf file) and I got an email through, with a pretty much empty named section, which is exactly what I anticipated. Great! - it's fixed.
So, the cron.daily ran early this morning, but still no email in my inbox when I got up. I then tried to run 'logwatch --Range today' and lo and behold, I got a logwatch report email, which included a named section, with log entries in there. So it seems that something that's been logged by named overnight to my logfiles (i.e. '--Range yesterday') has caused issues again with logwatch's ability to send reports through my ISP's smtp servers.
Debian :: Webserver Behind A Server Running Shorewall?
Mar 3, 2011The server I'm running runs Debian Etch, Squid and Shorewall. Every 24 hours the server gets a new internet IP so I need to use dyndns to keep the dns pointing to the correct PC.
I have a webserver that is running behind the debian server and am having trouble with it. When I enter the web address, it gets a timeout.
Server :: Can't Understand Logwatch Error
May 23, 2011This problem is occurring on Red Hat EL 5 WS. However, I have two CentOS 5 systems, with similar configuration to RH EL 5, where this problem does not occur.
I am getting this error:
Can't exec "sendmail": No such file or directory at ./0logwatch line 1018, <TESTFILE> line 1.
Can't execute sendmail -t: No such file or directory
Server :: Can't Get Logwatch To Email A Daily Summary?
Oct 12, 2010I have a squid proxy server (which I am very new too) which all traffic from my office goes through. The proxy itself is working fine, but I can not get logwatch to email me a daily summary. logrotate seems to be throwing an error:
# logrotate /etc/logrotate.conf
error: squid:1 duplicate log entry for /var/log/squid/access.log
My /etc/logrotate.d/squid file is below... My access logs are in /logs/squid not in /var/log/squid.
[Code]...
Server :: Deferrals Appearing Frequently In Nightly Logwatch Report
Apr 14, 2010i want to make sure my mail server is behaving as expected. the past two nights, i've received logwatch notices below. the section in question is the 20 or so deferrals from some .ru e-mail address. i've since removed the user that registered on my wordpress blog (wlvp@yandex.ru) and added the three IP address to iptables DROP, but these "e-mails" still look like they're in some queue unless i'm reading wrong. i've removed known usernames in case you find the numbers useful. why are all these deferred messages here? if they're stuck in a queue, can i remove them?
View 2 Replies View RelatedServer :: Logwatch On Multiple Servers, Need Only Short/critical Output?
Apr 27, 2010I have currently 7 servers that report logwatch every day.Fact is that it's lot of information to process every day, I would like to have as short as possible overview of events happened in last 24h is only critical/warning information . It would be + if all servers output could be gathered in 1 email
View 2 Replies View RelatedCentOS 5 Server :: Read Sendmail Log In Logwatch (what Is Arg1 And Arg2)?
Jun 6, 2009how do I decipher the following entries from sendmail log:ruleset=check_relay, arg1=[120.2.197.187], arg2=127.0.0.11, relay=[120.2.197.187], reject=553 5.3.0 Rejected - your IP is blacklisted by http://www.spamhaus.org: 1 Time(s)
View 3 Replies View RelatedCentOS 5 Server :: Sending Logwatch To External Mail Address?
Nov 4, 2009My ISP blocks outgoing email if it does not login properly with a valid account. I successfully configured sendmail to use SMART_HOST and confAUTH_OPTIONS with confAUTH_MECHANISM set to LOGIN PLAIN.
It successfully sends email because I tested it with evolution sending through 127.0.0.1, but I need to specify myacount@mydomain.com as the email address for root.
But it doesn't work for logwatch because it sends as from root@localhost.localdomain, and my ISP's smtp server rejects it. The message I get back in root@localhost account is the following:
----- Transcript of session follows -----
... while talking to smtp.mydomain.com.:
>>> MAIL From:<root@localhost.localdomain> SIZE=581 AUTH=<>
<<< 550 5.7.1 Client does not have permissions to send as this sender
554 5.0.0 Service unavailable
I thought that I should masquerade all emails from this domain, so I configured sendmail as specified in [1] section "24.3.1.4. Masquerading", but it doesn't work. It seems that masquerading in sendmail is broken or something is wrong in the documentation.
[1] [URL]
I have sendmail 8.13.8-2 and centos-release-5-4.el5.centos.1.
Is there a way to specify the "From:myacount@mydomain.com" in logwatch ? or Is there a way to make it work the masquerading in sendmail so I can masquerade everything as coming from a specific account?
General :: Logwatch Configure To Use SSH Tunnel Into Mail Server To Send Log Reports
Feb 28, 2011We have following setup,
1. Webserver (Centos 5.5)
2. Mail server (Centos 5.5)
We have configured autossh successfully to create/manage the ssh tunnel into mail server in order to dump all emails to localhost port.
To auto start autossh in boot time we have included following into /etc/rc.d/rc.local,
Quote:
So whenever our web application wants to send out emails it dump all emails to localhost:33465 port, easy piecy, all are working great
Now we have a requirement that logwatch reports should get delivered via the same ssh tunnel rather than installing postfix and configuring as a relay.
In logwatch is there a way to achieve that?
Server :: Monitor Server Snmp Read From Logs Parsed Possible?
Jul 21, 2009I would like to monitor a RedHat via snmp. I would like to make available data via snmp. The data that I would like to graph are only present in logs file. Is it possible to parse data from applicative logs and have them available for my cacti server via snmp? I already monitor CPU, mem, and others with cacti using the standard MIB.What would be the logical step I would need to achieve that?
View 1 Replies View RelatedServer :: How To Analysis IBM DSA Logs
Oct 24, 2010I Have RHEL4 running on IBM X3550 server, we request IBM support regarding issues with this server, they will request for IBM DSA logs. The logs are quite extensive and cover almost all server config & can identify hardware issues with drivers...etc. I want to know if there is a way to analysis those logs offline without sending them to IBM support?
View 3 Replies View RelatedGeneral :: Q2 Patching Logs Of Particular Server ?
Jun 10, 2011How to get the Q2 patching logs of particular server (Linux 2.6.9-100.EL)
View 1 Replies View RelatedHardware :: How To Find Logs In Hp-ux Server
Jan 11, 2010how to find logs in hp-ux server why it get unexpected shut..down is any hardware failure or or its been hard boot
View 3 Replies View RelatedServer :: Define How Old Logs Should Rsyslog Keep
Aug 25, 2010I was wondering how could I specify for how long the logs will be kept. Rsyslog doesn't have such an option (at least I didn't find it).Do I have to use logrotate for this, or is there some other option?
View 1 Replies View RelatedServer :: How To Check Logs For Previous Day
Oct 5, 2010how to check maillogs for previous days. wht is command to check log for yesturday in sendmail8.14 .fedora os i know /var/log/maillog.this gives o/p for today but wht abut yesturday.?
View 10 Replies View RelatedServer :: Security Logs With Message ID?
Mar 9, 2011Iam looking security specific event ID on Linux .hear are thousnds of event ID in Microsoft Windows/XP and VISTA etc. Similar way looking for Linux,unix ,Solaries,AIX etc event ID. I would to correlate and implement with Arcsight.
View 2 Replies View RelatedServer :: Unable To See All The Logs Forwarded To Box?
Apr 19, 2011We are forwarding logs (perl script executed logs) to one Red Hat Linux box. We have to get 97 logs for each time the script runs. But we see inconsistent number of logs coming to Linux box. Like one time we got 56, other time 3 , other time 43.. like this.. We are sure that 97 logs are being forwarded. Checked the Rsyslog.config filer any filters and couldn't see any filter dropping them. When we run the tcpdump, we can see 97 connections, but logs are not there in specified location.
View 1 Replies View RelatedServer :: How To Setup Logs In Vsftpd
Oct 20, 2010how to setup logs in Vsftpd? I have default configuration in CentOS but its not log`ing
View 1 Replies View RelatedUbuntu Servers :: How IPAddress Can Hit Server Yet Not Appear In ANY Logs
Oct 31, 2010Since Port 80 and 443 are the only ports I have open, how is it that an IPAddress can hit my server yet not appear in ANY logs ?
View 9 Replies View RelatedGeneral :: Collect All Logs Of Unix Server?
Dec 26, 2010I am installing RHEL 5.5 to be a syslog server to collects logs from servers (HP-UX, Linux, Windows and Cisco Network Devices). and i can now collect logs from my windows PC on syslog linux server by using Datagram SyslogAgent software. can collect logs from HP-UX 11.23 server. and i configuring the Unix server as in the steps below:
1. Log in as root
2. Go to /etc/syslog.conf
3. Add a line: *.*<tab>@<Sentinel Server IP Address>
*.* @10.15.1.5
4. Save and Close
# netstat -na | grep 514
tcp 0 0 *.514 *.* LISTEN
udp 0 0 *.514 *.*
[code]....
Server :: Access Logs In Squid Proxy?
Feb 24, 2011i am monitoring access log messages in squid proxy server,can it possible to get date,time,day in access logs is it possible
View 2 Replies View RelatedServer :: Configuring Syslog And Exporting Of Logs?
Jan 17, 2011configure syslog server on ubuntu now i want to export logs of windows and ubuntu desktop to the syslog server
View 6 Replies View RelatedServer :: Deleting The Squid Access Logs?
Dec 23, 2010Is there any way to delete squid proxy access logs. e how can the access logs be deleted
View 6 Replies View RelatedServer :: Locating Infected Files In Logs?
Oct 29, 2010I ran a scan (clamscan -r --remove /home/) on my user's home directory yesterday & since I have so many users on my mail server, it takes a very long time to complete. I came back in this morning and realized that there were two infected files found during last nights scan:
Code:
----------- SCAN SUMMARY -----------
Known viruses: 847768
Engine version: 0.96.4
Scanned directories: 23114
Scanned files: 1066439
Infected files: 2
[Code]....
Server :: Logrotate For Logs That Change Filenames
Nov 26, 2010Say that a certain server process generates log files and names them according to the current date; e.g.
server.nov-20.2010.log
server.nov-21.2010.log
server.nov-22.2010.log
server.nov-23.2010.log
i'd like to have logrotate compress the logs that are older than 3 days. Is this possible with logrotate, or do i just schedule a cron job to bzip everything under the folder older than 3 days?
Server :: Monitor Postfix Logs - Activity ?
Feb 26, 2010I have been using Postfix since 2006 with no problems ever. Simple & rock solid however I was wondering what you guys use for monitoring all your email traffic and logs? Is there an application or utility you guys suggest using as a mail administrator to easily scan / view logs in a organized and clean view?
View 1 Replies View RelatedServer :: Redirecting Boot Logs To Emails?
Nov 15, 2010I am done with installing cron jobs for performing rebboting operations, now my requirement is sending the bootlogs to an email address.
View 1 Replies View RelatedServer :: Rotating Logs In Squid 2.7 Stable9
Aug 13, 2010I've installed squid 2.7 stable9 in centos 5.4 x32 bit. I've installed and configured it successfully, its working fine. I want to clear few doubts, for that your kind help is needed. Parallely, I've configured another server using binary rpms with same squid version (2.7 stable9). I found that it creates a /etc/logrotate.d/squid for rotating log files (access.log, cache.log, store.log). Which is properly rotating log files using compress, dateext and size options (i manually added the size option).
But after compiling and installing from source code, its automatically not created. I want to rotate the log files in the same way as it is doing when i install using binary rpms. Below logfile_rotate entry is present in my squid.conf file (in source code installation scenario) logfile_rotate 10 Below logfile_rotate entry is present in my squid.conf file which is commented (in binary rpm installation scenario) #logfile_rotate 10 I want to rotate the log files by size (as I've more than 200 users, these logfiles size increasing very fast, ie. approx 80 MB per hour), with compress and dateext option.
Fedora :: FC12 Logs In And Then Logs Out?
Apr 19, 2010When I try to login as me - it gets pretty far but then something happens and automatically logs out. This happens in Gnome, Kde too. Now - I have no problem logging in a Root. Is there a way I can try to stop the login process before it kicks me out, or is there a way to look at some files to tell me what's going on?
View 3 Replies View Related