LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - General
User Name
Password
Linux - General This Linux forum is for general Linux questions and discussion.
If it is Linux Related and doesn't seem to fit in any other forum then this is the place.

Notices


Reply
  Search this Thread
Old 12-25-2004, 12:39 AM   #1
anandhg02
LQ Newbie
 
Registered: Dec 2004
Posts: 4

Rep: Reputation: 0
How to setup a syslog server


I am having a D-Link DFL-500 hardware firewall. I have an option like to log all the activities to a syslog server in it. So I want to setup a syslog server in Fedora Core 2 and to log all the activities of the firewall.

Plz guide me to setup a syslog server.
 
Old 12-25-2004, 03:40 AM   #2
bulliver
Senior Member
 
Registered: Nov 2002
Location: Edmonton AB, Canada
Distribution: Gentoo x86_64; Gentoo PPC; FreeBSD; OS X 10.9.4
Posts: 3,760
Blog Entries: 4

Rep: Reputation: 78
Your FC2 most certainly already has a system logger installed. All you need to do is set it up to accept connections from the firewall.

This step is dependant on which logger you use. To see which one try:
Code:
# rpm -qa | grep syslog
The two most popular are the newer syslog-ng and the older but trusty syslogd. Once you find this out I can probably help you out more.
 
Old 12-26-2004, 10:17 PM   #3
anandhg02
LQ Newbie
 
Registered: Dec 2004
Posts: 4

Original Poster
Rep: Reputation: 0
Sir, I am having sysklogd

#rpm -qa sysklogd
sysklogd-1.4.1-16

This includes the syslogd daemon. Plz guide me on how to setup a syslog for DLINK firewall
 
Old 12-26-2004, 10:29 PM   #4
bulliver
Senior Member
 
Registered: Nov 2002
Location: Edmonton AB, Canada
Distribution: Gentoo x86_64; Gentoo PPC; FreeBSD; OS X 10.9.4
Posts: 3,760
Blog Entries: 4

Rep: Reputation: 78
Ok, the only thing you have to do is restart syslogd with the '-r' command line switch. You will need to edit syslog's startup script (in /etc/rc.d or /etc/init.d) to make this permanent. Now syslogd will be listening on UDP port 514.

Here is a link to help:
http://freebooks.by.ru/view/LinuxNet...htm#Heading327

As for configuring the dlink, I cannot help..read the docs and make it log to your box on port 514

HTH.
 
Old 12-26-2004, 10:40 PM   #5
anandhg02
LQ Newbie
 
Registered: Dec 2004
Posts: 4

Original Poster
Rep: Reputation: 0
Thank you sir, I will try this and come back to you, if I am having any problem
 
Old 12-26-2004, 10:50 PM   #6
bulliver
Senior Member
 
Registered: Nov 2002
Location: Edmonton AB, Canada
Distribution: Gentoo x86_64; Gentoo PPC; FreeBSD; OS X 10.9.4
Posts: 3,760
Blog Entries: 4

Rep: Reputation: 78
No prob, and please, no need to call me "sir", as I am still too young and foolish to deserve such a title
 
Old 12-28-2004, 12:03 AM   #7
anandhg02
LQ Newbie
 
Registered: Dec 2004
Posts: 4

Original Poster
Rep: Reputation: 0
I had setup my D-Link to log to my syslog server.
It is sending messages, but all the messages goes into /var/log/messages. The following is one of a log made by D-Link.
============================================================
Dec 28 11:33:40 192.168.100.5 type=mgmt, msg="Log&Report setting set successful at 192.168.100.1 by admin"
============================================================

Is it possible to make the logging to some other file such as to log all the log comming from D-Link to /var/log/dlink.
 
Old 12-28-2004, 12:30 AM   #8
bulliver
Senior Member
 
Registered: Nov 2002
Location: Edmonton AB, Canada
Distribution: Gentoo x86_64; Gentoo PPC; FreeBSD; OS X 10.9.4
Posts: 3,760
Blog Entries: 4

Rep: Reputation: 78
I am sorry, but I don't think you can with syslogd, but I may be wrong. There doesn't seem to be a facility for seperating messages from your dlink. Have a good look at man 5 syslog.conf to be sure...

You can do this however, with syslog-ng
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Syslog Server MrJoshua Linux - Software 1 10-26-2005 02:56 PM
Need to implemet Syslog server juanb Linux - Software 0 11-11-2004 03:37 AM
Syslog setup trouble with Wireless access point redhat bill78uk Linux - Wireless Networking 0 10-08-2004 11:45 AM
Syslog setup jolu2000 Linux - General 0 06-03-2004 06:02 PM
Using syslog server for sonicwall sorry Linux - General 1 01-17-2002 08:01 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - General

All times are GMT -5. The time now is 02:54 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration