LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 06-09-2007, 01:20 PM   #1
simplified
Member
 
Registered: May 2007
Location: London, UK
Distribution: Kubuntu 9.04 x64 / Ubuntu Server 9.04 x64
Posts: 50

Rep: Reputation: 15
Getting SELinux to allow remote syslog messages


Hi All

I've been banging my head against the wall with regards to an issue that I have with enabling my router to send syslog messages to my Fedora Core 6 box. I've modified the /etc/syslog.conf file and the daemon has written the log file I need to /var/log/ but from the results of a sniff I'm getting the following ICMP message being sent back to the router:

18:09:42.012030 IP 172.16.1.6 > 172.16.1.1: ICMP host 172.16.1.6 unreachable - admin prohibited, length 132

I'm a bit new to SELinux so if anyone knows how to get around this I'd be most greatful
 
Old 06-09-2007, 01:30 PM   #2
simplified
Member
 
Registered: May 2007
Location: London, UK
Distribution: Kubuntu 9.04 x64 / Ubuntu Server 9.04 x64
Posts: 50

Original Poster
Rep: Reputation: 15
How embarassing... just typed

# netstat -tunap | grep 514

... and this returned no results - sorry! :-/
 
Old 06-09-2007, 01:49 PM   #3
simplified
Member
 
Registered: May 2007
Location: London, UK
Distribution: Kubuntu 9.04 x64 / Ubuntu Server 9.04 x64
Posts: 50

Original Poster
Rep: Reputation: 15
Right then...

Sorry about that, this actually had nothing to do with SELinux. It was a bit of a newbie classic, I had to allow syslog in the firewall (allowed syslog:udp in Lokkit) as well as modifying the following line in /etc/sysconfig/syslog :

SYSLOGD_OPTIONS="-m 0 -r -x"

... and now it works a treat!
 
Old 07-13-2007, 07:16 PM   #4
tajsandhu
LQ Newbie
 
Registered: Oct 2006
Posts: 5

Rep: Reputation: 0
Quote:
Originally Posted by simplified
Right then...

Sorry about that, this actually had nothing to do with SELinux. It was a bit of a newbie classic, I had to allow syslog in the firewall (allowed syslog:udp in Lokkit) as well as modifying the following line in /etc/sysconfig/syslog :

SYSLOGD_OPTIONS="-m 0 -r -x"

... and now it works a treat!

Thank you. It worked like a charm.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
loging syslog messages to a Remote Server nevxille Linux - Newbie 1 10-18-2006 07:12 AM
syslog to accept remote messages ilnli Linux - Software 1 08-02-2006 07:19 AM
Syslog messages... stevemad Slackware 4 10-15-2005 04:45 PM
Can't get syslog to record messages from my router ec3042 Linux - Networking 3 02-24-2004 01:10 PM
syslog and firestarter - log messages to another file than messages mule Linux - Newbie 0 08-07-2003 04:35 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 12:44 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration