Unable to specify remote syslog server with port on Linux client
 

Hi

configuring /etc/syslog.conf to send all syslog messages to remote syslog server running on non default port is not working.

*.* @10.102.77.118:514

I also verified from tcpdump didn't see any syslog messages sent


Whereas , It works well on "*.* @10.102.77.118 "

Went through etc/syslog.conf man page also.

Request for your help, Am i missing some configuration?

How did you configure the server to listen on that port?

$AllowedSender is not in a stock rsyslog.conf so you can add it.
It is Basic Security only to keep unqualified senders from doing mischief to your system.

Is there a firewall activated? It may need port 514 opened if there is.
so the 514 is NOT required.
*.* @10.102.77.118 is perfectly valid.

but are required to have the sending directive *.* @10.102.77.118 work.

Reference: http://linux.die.net/man/5/rsyslog.conf

Version on the client and OS/release too please.

syslog version is of syslogd 1.4.1
yes the host is centos5


if i specify just
*.* @IPAddress in /etc/syslog.conf , it works and sends syslog messages to IPAddress : 514 port.


if i specify
*.* @IPAddress:514 (default port) OR *.* @IPAddress:SyslogserverPort , it doesn't work.


Is it due to older syslogd doesn't facilitate this option?

Can it be achieved in syslogd, rsyslod is not available in the host?

I'm running tcpdump to verify with filter for the dest port on remote server,

Issue is solved after updating to rsyslogd
 

After updating with rsyslogd was able to see it working.