All Questions
11
questions
1
vote
1
answer
9k
views
Rsyslog forward logs cannot connect Permission Denied
Have configured Rsyslog to ship logs to a remote location through an SSH tunnel.
However rsyslog complains with "Permission denied":
rsyslogd[28412]: cannot connect to 127.0.0.1:10601: ...
- 171
0
votes
1
answer
7k
views
Getting logger to log to rsyslog in alpine
I installed rsyslog on my Alpine-based system to replace busybox syslogd. After completely disabling syslogd in openrc, enabling ryslog at boot and rebooting, all services correctly started logging to ...
- 579
0
votes
1
answer
286
views
How to append host IP address and host MAC addres to every log message?
I have several log agents with iptables logging rules and default rsyslog config. Rsyslog sends the logs to the central server.
Iptables rule:
iptables -A INPUT -j LOG --log-prefix "INPUT:DROP:" --...
- 3
2
votes
0
answers
561
views
MacOS - How to change syslogd's log level for a specific process/program?
I am new to MacOS and I would like to get a better of view of what's going on with a system process when my computer is starting up. I can see in the log that a process is changing settings, but the ...
1
vote
0
answers
786
views
rsyslogd: How to prevent logging in the /var/kern.log file and redirecting to another file?
I am trying to redirect iptables log to another file.
Based upon my reading on the net, I did the following:
In my iptables rule, I have rules like:
iptables -A INPUT -s ... -j LOG --log-prefix "...
- 369
1
vote
1
answer
1k
views
Millisecond precision in syslogd on OS X
When I log messages to syslog in OS X (10.10.1), it truncates the timestamp to the second. If I log to a file, for example, I am able to capture milliseconds. Milliseconds matter when logs are coming ...
- 161
0
votes
1
answer
415
views
File monitoring using syslog
Can rsyslog, syslog-ng programs monitor change of file? I want to monitor files and receive the changes made to the file by syslog on server. Thank you.
- 3
0
votes
1
answer
1k
views
Syslog cannot start
I run rsyslog on Ubuntu server.
after rsyslog starts, it restarts in a loop.
here is a piece of /var/log/syslog:
Aug 13 16:05:50 ip-10-92-237-215 rsyslogd: rsyslogd's groupid changed to 103
Aug 13 ...
- 185
1
vote
1
answer
3k
views
How to capture the remote [ rsh/rcp ] login events and information using syslog.conf
I am exploring ways to capture the remote login events in my Linux server [ Oracle Linux 5x ].
Many users are connecting to the server using rcp and rsh protocols , I wish to capture the events [ such ...
- 81
1
vote
0
answers
646
views
how to get logs in DD/MM/YYYY format and ipaddress format using rsyslog in ubuntu
Feb 4 10:32:57 master sshd[2070]: pam_unix(sshd:session): session opened for user root by (uid=0)
Feb 4 10:32:59 master sshd[2070]: Received disconnect from 192.168.0.107: 11: disconnected by user
...
- 111
2
votes
2
answers
3k
views
Configure a UNIX server to send its logs to a remote syslog server?
Is it possible?
If so, how is it done exactly? The syslog.conf file doesn't help too much.
- 259