Getting SELinux to allow remote syslog messages
 

Hi All :)

I've been banging my head against the wall with regards to an issue that I have with enabling my router to send syslog messages to my Fedora Core 6 box. I've modified the /etc/syslog.conf file and the daemon has written the log file I need to /var/log/ but from the results of a sniff I'm getting the following ICMP message being sent back to the router:

18:09:42.012030 IP 172.16.1.6 > 172.16.1.1: ICMP host 172.16.1.6 unreachable - admin prohibited, length 132

I'm a bit new to SELinux so if anyone knows how to get around this I'd be most greatful :D

How embarassing... just typed

# netstat -tunap | grep 514

... and this returned no results - sorry! :-/

Right then...

Sorry about that, this actually had nothing to do with SELinux. It was a bit of a newbie classic, I had to allow syslog in the firewall (allowed syslog:udp in Lokkit) as well as modifying the following line in /etc/sysconfig/syslog :

SYSLOGD_OPTIONS="-m 0 -r -x"

... and now it works a treat!

Thank you. It worked like a charm.