Solved: Re: Syslog Server Red Hat

paulo.s · ‎01-10-2003

My station have dual boot, Red Hat 8.0 and Windows2K.

How can I configure my syslog server Red Hat 8.0, for receive acls logs from my routers ?

When I use a syslog server with Windows2K, software Kiwi, my machine receive all the logs ok.

Thks,

Paulo

gfullage · ‎01-12-2003

I'm no RedHat expert, but if it works the same as standard Unix (which I tink it does), you need to edit your /etc/syslog.conf file and direct the specific syslog events to a specific file.

Syslog events from a router by default are sent using the local7 facility, so if you do something like:

local7.* /var/adm/messages

(note there's a TAB between the facility type and the directory in this file) then your syslogs should be logged to that file. You'll have to stop/start the syslog server on the machine after you make the change.

View solution in original post

gfullage · ‎01-12-2003

I'm no RedHat expert, but if it works the same as standard Unix (which I tink it does), you need to edit your /etc/syslog.conf file and direct the specific syslog events to a specific file.

Syslog events from a router by default are sent using the local7 facility, so if you do something like:

local7.* /var/adm/messages

(note there's a TAB between the facility type and the directory in this file) then your syslogs should be logged to that file. You'll have to stop/start the syslog server on the machine after you make the change.

paulo.s · ‎01-13-2003

Thks, but not work. I have seen this solution.

I still try looking for a solution.

paulo.s · ‎01-14-2003

Ok, after reboot, I have received logs sent from routers.

Thks

s-beavers · ‎01-23-2003

If possible, use syslog-ng. It offers a more granular filtering ability for logs.