Configure server to receive router syslog messages

From NippAero

Enable logging from remote machines

If you are using Red Hat or CentOS, edit file /etc/sysconfig/syslog:

# vi /etc/sysconfig/syslog

Add the "-r" option to the SYSLOGD section. It should look something like this:

# Options to syslogd
# -m 0 disables 'MARK' messages.
# -r enables logging from remote machines
# -x disables DNS lookups on messages recieved with -r
# See syslogd(8) for more details
SYSLOGD_OPTIONS="-m 0 -r"
# Options to klogd
# -2 prints all kernel oops messages twice; once for klogd to decode, and
#    once for processing with 'ksymoops'
# -x disables all klogd processing of oops messages entirely
# See klogd(8) for more details
KLOGD_OPTIONS="-x"

Restart syslogd

# service syslog restart

Open up UDP port 514

This can vary widely by the system you are running but in general you will need to modify IPTables with a line like the following.

-A RH-Firewall-1-INPUT -m state --state NEW -m udp -p udp --dport 514 -j ACCEPT

Save iptables configuration

# service iptables save

Restart iptables

# service iptables restart

Retrieved from "http://www.nippaero.com/wiki/index.php5?title=Configure_server_to_receive_router_syslog_messages"

Configure server to receive router syslog messages

From NippAero

Enable logging from remote machines

Open up UDP port 514

Views

Personal tools

Navigation

Search

Toolbox