Linux - ServerThis forum is for the discussion of Linux Software used in a server related context.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Well, if you're running Linux, you already HAVE a syslog server. So, I'd suggest you just point your firewall logs to your CentOS server...that's it.
If you're looking for more granularity, install syslog-ng, and split the firewall logs to a separate file.
Tbone,
I configured Syslogs server .
1) From client linux System i am getting logs, but from firewall no threate is comming.
2) My self googling but no help .
3) Now i am going for sylog-ng.
No you didn't. It came already installed with CentOS
Quote:
1) From client linux System i am getting logs, but from firewall no threate is comming.
Did you check your firewall settings?? Is your Linux system allowing incoming connections from those addresses? Are you SURE your firewall is sending those events, since there are many levels of information syslogs can send? Do you have the firewall configured to SEND to the Linux box? Can you see any traffic between the two servers using Wireshark, or another sniffer?
Quote:
2) My self googling but no help.
3) Now i am going for sylog-ng.
...and unless you have traffic between the two boxes, allow incoming connections to the Linux box from the firewall device(s), or configure the firewall device(s) to SEND syslog events to a remote syslog server, it won't matter WHAT syslog engine you're running.
And by the way, why are you complicating your life? CentOS 5 has rsyslog in repos - why don't you just use supported rsyslog rather than hunting for unsupported syslog-ng's dependencies?
Last edited by klearview; 01-29-2012 at 10:27 AM.
Reason: grammar
used these rpm & configure you syslog-ng server without any error it's fully tested in rhel5 & centos5
rpm can used as per os architecture 64bit or 32bit
When i made syslog server
#yum groupinstall "Development Tools"
# rpm -ivh syslog-ng-3.1.2-1.rhel5.i386.rpm
or may be these can required
#yum groupinstall "Development Libraries"
# yum install lib* glib* pcre-devel
used these rpm & configure you syslog-ng server without any error it's fully tested in rhel5 & centos5
rpm can used as per os architecture 64bit or 32bit
When i made syslog server
#yum groupinstall "Development Tools"
# rpm -ivh syslog-ng-3.1.2-1.rhel5.i386.rpm
or may be these can required
#yum groupinstall "Development Libraries"
# yum install lib* glib* pcre-devel
Uhh...why??
Just typing in "yum install syslog-ng" will get the dependencies it needs.
Just typing in "yum install syslog-ng" will get the dependencies it needs.
syslog-ng is not in CentOS repos. He would need to add a repository that contains it (EPEL maybe?). Rsyslog is supported in CentOS 5 so why not just use it.
it is a open-source pkg for making a log server which required some addition pkg
in syslog-ng required some addition rpm in my case i also see these problem #yum groupinstall "Development Tools" have resolve dependency error.
Syslog-ng 2.0 is totally different from syslog-ng 3.0 as per pkg & configuration so Development tool or "Development Libraries" may required when i tested in 2.0 it shown me some pkg error which resolve through #yum groupinstall "Development Tools" & also same done in 3.0
And by the way, why are you complicating your life? CentOS 5 has rsyslog in repos - why don't you just use supported rsyslog rather than hunting for unsupported syslog-ng's dependencies?
HI Klearview,
I am install rsylog server , but unable to configure as server.
syslog-ng is not in CentOS repos. He would need to add a repository that contains it (EPEL maybe?). Rsyslog is supported in CentOS 5 so why not just use it.
Which syslog daemon you prefer might be a matter of taste (and I like syslog-ng). But instead of relying on an RPM being available somewhere, I find it easier to compile it on my own in case I need a newer/different version.
@ganesh24pal: what do you mean by “... configure as server.” You want to setup remote logging?
Which syslog daemon you prefer might be a matter of taste (and I like syslog-ng). But instead of relying on an RPM being available somewhere, I find it easier to compile it on my own in case I need a newer/different version.
@ganesh24pal: what do you mean by “... configure as server.” You want to setup remote logging?
@reuti yes i want to how configure remote logging server via rsyslog.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.