[Openca-Users] syslog functionality in openca

Wed, 26 May 2010 06:45:09 -0700 

hi guys!

i want to send openca logs to a syslog server in my network (Cisco MARS)
i started crawling into the code in openca (because lack of documentation) and 
found out that openca supports Net,Sys and unix logging! so i must use NET 
section! now the problems start!

** in log.xml file i can only use * for LEVEL and CLASS! if i change them 
openca says: there is no appropriate logger (64510020)
** there is no options to specify syslog server address in log.xml file
** NET does not work with class and level specified by * and server address 
specified manually in code! it says addmessage failed because it could not 
connect to server but openca can access syslog server in it's network!

the only way i could send logs over network was to use linux syslog (in ubuntu 
rsyslog) for local logging(Sys) and redirect them to another rsyslog server in 
network by rsyslog configuration! and this was my log.xml file:

 <slot>
     <name>sys_syslog</name>
     <class>*</class>
     <level>*</level>
     <logger>Syslog</logger>
     <type>Sys</type>
     <prefix>OpenCA PKI Log Message</prefix>
     <facility>local6</facility>
     <socket_type>unix</socket_type>
 </slot>

and in rsyslog configuration i had :
local...@mysyslogsrv
this worked but there is some problems yet!

** there is "#12" in generated xml log and i don't know what is this! it 
reduces readability!
<log_message>#012 <class>cmd</class>#012 <cmd>getparams#012genskey</cmd>#012 
<id>127487782688584863144154620679870323371052</id>#012
** all of the logs have info severity (level) in syslog server!


and something else in log.pm file in perl modules lines 126,127 we have :
        $self->{CLASS}->{$class}[scalar @{$self->{CLASS}->{$class}}] = $name;
        $self->{LEVEL}->{$level}[scalar @{$self->{LEVEL}->{$level}}] = $name;
both class and level are filled with name! is that correct ?

i will appreciate any help or guide !


      
------------------------------------------------------------------------------


_______________________________________________
Openca-Users mailing list
Openca-Users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openca-users

Reply via email to