What syslog server do you use? I've tried Kiwi and Solarwinds. I'm not crazy about Kiwi because of it logging to text files, and the Solarwinds version that we have is from the Engineer's toolset which doesn't allow you to select SQL databases. (It uses its own access database.)
I'm looking for something that could possibly be managed via web interface, open-source (but would settle for commercial if good enough).
The "Pro" versions for Kiwi will log to a number of supported SQL servers (they even give the field templates).
They are also capable of handling higher inbound traffic levels.
On the *nix side, Rsyslogd has been working well for me, it'll do UDP, TCP and log to some SQL databases (like mySQL). It's also multi-threaded and can handle substantial inbound traffic rates (which is why we went to it, standard *nix syslogd was swamped).
syslog-ng has a free version, I think, but it's crippled compared to the purchased version (I'm not sure about it, that's what I was told).
Rsyslogd is free and not crippled. It is now included with RedHat Enterprise 5.1 and Suse (10.x, 11?)
The other choke point for really heavy inbound loads is the NIC buffers, and the UDP buffer, both of which you may want to adjust ...
The default "might not" work from the default installation. Rsyslog docs say it will also read the /etc/syslog.conf file ... but if that wasn't really configured beyond teh defaults, it might not have translated well.
A good way to test it is a utility from (who else?) Kiwi called (I think) sysloggen ... something like that ... it lets you craft test syslog messages (TCP, UDP, any facility, etc) and direct it towards a specific server.
I'll try to pull and sanitize one of my rsyslog.conf files to give you an example. The config file provides with the package is also pretty well documented ...
This is actually a pretty cool feature, i didn't even know it existed until I was looking for a solution to advertise a subnet (prefix in BGP talk), only if a certain condition existed. This is exactly what conditional advertisements does
j ai une question j ai achete un routeur cisco 887VA-k9 , je le configuré avec la configuration ci- dessous
si je le lier avec mon pc portable sur l un de ses ports directement ça marche toute est bien ( la connexion internet + m...
Attached policy provides CLI access to the Cisco 4G router over text messaging. Two files are in the attached .tar file:
2. PDF with instructions on how to load and use the .tcl file.