*#Centralized log server* *It is used to collect logs from different servers to one log server*
*#man 5 syslog.conf --> manual pages to set log* *#vi /etc/syslog.conf --> This is the location where logs are set. * *#cd /var/log --> all logs are going to this location. We can set that each copy of log should go to server m/c for monitoring* *################# Client side configuration #################* *#vi /etc/syslog.conf* **.* @<ip of log server> --> Append this line below, it says any kind of log * *should be redirected to the server so that it * *maintain local and remote copy of log.* *authpriv.* @<ip of log server> --> /var/log/secure* *#/etc/init.d/syslog restart --> to start the syslog service* *to create a log * *#logger -i -t root "hi testing"* *################ Server Side Configuration ################* *#vi /etc/sysconfig/syslog --> Server side log configuration file* *SYSLOGD_OPTIONS="-m 0 -r" --> Just add -r to receive remote logs from client m/c* *#/etc/init.d/syslog restart --> to start the syslog service* [Non-text portions of this message have been removed]
