I am facing issue with accessing firewall syslog files.the size is around 2GB.It says i need to open it with another editor rather than notepad.I tried with wordpad but it hungsup.
Any suggestions on this.Also i have heard that the logs are stored by date( a day each) in seperate log files.How do i enable that?
Thanks in advance!
The best syslog would be syslog-ng which will give the ability to rotate the log file at certain size, date, etc... If you have multiple firewalls, syslog-ng can store logs in separate files.
syslog-ng comes free with most Linux distribution
Any application will have trouble opening a 2GB log file. Try using a syslog server like RSyslog (http://www.rsyslog.com/) it also has a web front-end so you can view a log and filter the results. If you want to have each device as a separate log file, you will need to configure it in your conf file on your server.
Hope that helps.
For viewing large syslog files, or any large text file for that matter, I like UltraEdit. UltraEdit can handle and edit files in excess of 4 gigabytes.
It's fairly inexpensive and has tons of great attributes that make it worth every penny!!!
UltraEdit is the best text editor out there, however even it has problems with a 2GB file (probably more the PC than the app). I also use GSplit to take the file and break it up. Excel and it's Auto Filter option are very useful as well.
thanks for the inputs..another query.
how do you stop the logs being continually generated/updated to the particular text file inside the system logs from the device.
I am trying to delete the log file...but it says something else is using this,probably the firewall is generating logs into this.
Any ideas on this..how do we stop this for sometime..do i need to configure anything on firewall for this?