Re: syslog server- how to on Linux

From: Nuno Branco (branco@markdata.pt)
Date: 12/16/02

Next message: Jason Burzenski: "RE: syslog server- how to on Linux"

Previous message: Gunn, Jeff: "RE: NetScreen XP and NetMeeting"
In reply to: netsec novice: "syslog server- how to on Linux"
Next in thread: Jason Burzenski: "RE: syslog server- how to on Linux"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: Nuno Branco <branco@markdata.pt>
To: netsec novice <netsec9@hotmail.com>
Date: 16 Dec 2002 14:39:27 +0000

You must use the "-r" switch for "remote" logging i.e. syslogd -r

Syslog usually listens on 514/udp.
On client machines you must set your syslog.conf to log to a remote
server with an entry like *.* @server.ip.address.

On Fri, 2002-12-13 at 20:34, netsec novice wrote:
> I'm hoping I don't generate flames because this is somewhat off-topic but I
> have been googling for a while and I'm not getting the answer I'm looking
> for. I need information on how I view or set up syslog on a Linux platform
> (specifically SuSE 8.1) I am BRAND new to Linux and purchased SuSE to force
> myself to learn. My first project is to set it up as a syslog security
> server. Yes - I have also done man syslog. I am familiar with syslog
> servers (Kiwi) in the windows environment. What is the method to viewing
> logs on Linux? Typing syslogd at the command line tells me that syslogd is
> already running but I don't see it listening as a service when I type
> netstat -an. Any help is appreciated... a direction for information if you
> just think I'm an idiot is fine too.
> thanks
> N
>
> _________________________________________________________________
> MSN 8 helps eliminate e-mail viruses. Get 2 months FREE*.
> http://join.msn.com/?page=features/virus

-- 
Atentamente, 
Nuno Branco
MARKDATA
Rua Padre Luis Aparicio, 10 - 5º 
1150-248 Lisboa - PORTUGAL
Telefone: +351 213173400 
Fax: +351 213155046 
http://www.markdata.net/

application/pgp-signature attachment: This is a digitally signed message part

Next message: Jason Burzenski: "RE: syslog server- how to on Linux"
Previous message: Gunn, Jeff: "RE: NetScreen XP and NetMeeting"
In reply to: netsec novice: "syslog server- how to on Linux"
Next in thread: Jason Burzenski: "RE: syslog server- how to on Linux"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

RE: Recent Increase in Port 139 Activity
... Our environment is mixed Windows and Unix - Linux and AIX. ... I collect syslog from my firewalls on Windows boxes ... product that is quite reasonably priced (about $50 per server in small ...
(Incidents)
Re: Need to implemet Syslog server
... >On my network I need to implement a Syslog server ... Pretty much everything but Windows will ... likely talk to syslog if told to, ... A great many other managed network devices support syslogging, ...
(Security-Basics)
[HPADM] SUMMARY: syslog redirection
... server is down, entries will be lost. ... Syslog sends over UDP on a "broadcast and forget" concept. ... information that is subject to United States laws and regulations. ... I'm being asked to route syslog messages to a central server. ...
(HP-UX-Admin)
Re: How to allow port 514?
... a packet filter allows traffic into the server itself. ... If you want to run your syslog on the server you would use a packet filter. ... In ISA Policy Elements, right click Protocol Definitions, ... in Publishing, right click Server ...
(microsoft.public.windows.server.sbs)
RE: Syslog Server on Debian Etch
... Syslog was working fine on the clients, I had it installed to a diff ... Is anyone else monitoring Juniper Netscreen firewalls? ... Syslog Server on Debian Etch ...
(Debian-User)