I realize has been answered previously but I cannot figure out where to
modify my /etc/rc.d/init.d/syslog script to automagically start syslog
accepting remote conections on linux-mandrake 6.0. Here is the file...
Also, I've done the following...
1) Make sure syslogd is started w/ remote logging enabled. I just kill the
syslogd and run 'syslogd -r'. I don't know how to get it to start as such
automagically, but it has something to do with editing the
/etc/rc.d/init.d/syslogd to reflect the same type change (can someone
explicitly . Supposedly this opens a udp port 513, but on my system I think
it is 514. It can be verified using the 'netstat -na' command.
2) The hosts file should have an entry for loghost, but I think this might
be only for Solaris. Example...
127.0.0.1 localhost loghost
3) The log files must pre-exist. Create them using 'touch <filename>'
4) Modify the syslog.conf. Example...
# Begin administrator modifications...
# 04231999 Allows GNATBox Firewall to log FILTER events locally
# (inactive, un-comment to activate, CAUTION this generates lots of data)
#local1.* /var/log/gnatbox/filter.log
# 04231999 Allows GNATBox Firewall to log NAT events locally
# (inactive, un-comment to activate, CAUTION this generates lots of data)
#local0.* /var/log/gnatbox/nat.log
# 04231999 Allows GNATBox Firewall to log WWW events locally
# (active)
local2.* /var/log/gnatbox/www.log
# End administrator modifications.
Jason S. Antonacci
Computer Support Specialist IV
Univ. of Georgia - Savannah River Ecology Lab
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Office: 803.725.5894
Mobile: 706.373.0821
Email: [EMAIL PROTECTED]
- Re: [expert] Remote systems logging to Linux (again) Jason Antonacci
