Ubuntu Syslog Server

From Teknologisk videncenter
Revision as of 17:16, 14 March 2013 by Rael (talk | contribs) (Created page with "installer rsyslog med <pre> aptitude install rsyslog -y </pre> Tillad UDP syslog pakker at komme ind til maskinen. Normalt er syslog kun sat op til interne log beskeder. <pre> #...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

installer rsyslog med 

aptitude install rsyslog -y

Tillad UDP syslog pakker at komme ind til maskinen. Normalt er syslog kun sat op til interne log beskeder. 

# provides UDP syslog reception
$ModLoad imudp
$UDPServerRun 514

opret en folder i /var/log/cisco med mkdir -p /var/log/cisco

opret en fil der hedder /etc/rsyslog.d/99-cisco.conf og smid noget indhold i den: 

# Log syslog messages recieved from the network
$template DynFile,"/var/log/cisco/%$year%%$month%%$day%.log"
:fromhost-ip, isequal, "172.16.4.19" ?DynFile
:fromhost-ip, isequal, "172.16.4.19" ~

reload rsyslog med service rsyslog reload

Cisco config

logging nms.domain.com
logging trap 5
logging source-interface fa0/1
Retrieved from "http://mars.merhot.dk/w/index.php?title=Ubuntu_Syslog_Server&oldid=24605"