Coinfiguring a Sylog Server on Linux
Simple stuff, just no good resource out there:
1). Modify the line in /etc/syslog.conf from this:
*.info;mail.none;authpriv.none;cron.none /var/log/messages
To this
*.info;mail.none;authpriv.none;cron.none;local0.none /var/log/messages
2). Add the following two lines to the bottom of /etc/syslog.conf, the file “specialfilename” is the name of the new log:
# Firebox logs
local0.* /var/log/specialfilename
3). Modify /etc/syconfig/syslog so the”SYSLOGD_OPTIONS” look like this:
SYSLOGD_OPTIONS="-r -m 0"
4). Restart the syslog server:
[root@yourserver etc]# /etc/init.d/syslog restart
Shutting down kernel logger: [ OK ]
Shutting down system logger: [ OK ]
Starting system logger: [ OK ]
Starting kernel logger: [ OK ]
1). Modify the line in /etc/syslog.conf from this:
*.info;mail.none;authpriv.none;cron.none /var/log/messages
To this
*.info;mail.none;authpriv.none;cron.none;local0.none /var/log/messages
2). Add the following two lines to the bottom of /etc/syslog.conf, the file “specialfilename” is the name of the new log:
# Firebox logs
local0.* /var/log/specialfilename
3). Modify /etc/syconfig/syslog so the”SYSLOGD_OPTIONS” look like this:
SYSLOGD_OPTIONS="-r -m 0"
4). Restart the syslog server:
[root@yourserver etc]# /etc/init.d/syslog restart
Shutting down kernel logger: [ OK ]
Shutting down system logger: [ OK ]
Starting system logger: [ OK ]
Starting kernel logger: [ OK ]
posted by Andrew Krone at
11:28 AM
0 Comments:
Post a Comment
Links to this post:
Create a Link
<< Home