This shows you the differences between two versions of the page.
использование_протокола_syslog [2010/06/01 11:59] val |
использование_протокола_syslog [2013/05/22 13:50] |
||
---|---|---|---|
Line 1: | Line 1: | ||
- | ====== Использование протокола SYSLOG ====== | ||
- | |||
- | !!! add access list logging | ||
- | |||
- | ===== FreeBSD ===== | ||
- | <code> | ||
- | [gate:~] # grep syslog /etc/rc.conf | ||
- | syslogd_flags="-a 192.168.X.0/24:*" | ||
- | |||
- | [gate:~] # grep local0 /etc/syslog.conf | ||
- | local0.* /var/log/switch.log | ||
- | |||
- | [gate:~] # touch /var/log/switch.log | ||
- | |||
- | [gate:~] # /etc/rc.d/syslogd restart | ||
- | |||
- | [gate:~] # tail -f /var/log/switch.log | ||
- | </code> | ||
- | |||
- | ===== Ubuntu (syslogd) ===== | ||
- | <code> | ||
- | root@gate:~# cat /etc/default/syslogd | ||
- | ... | ||
- | SYSLOGD="-r" | ||
- | |||
- | root@gate:~# cat /etc/syslog.conf | ||
- | ... | ||
- | local0.* /var/log/switch.log | ||
- | |||
- | root@gate:~# touch /var/log/switch.log | ||
- | |||
- | root@gate:~# chown syslog:adm /var/log/switch.log | ||
- | |||
- | root@gate:~# /etc/init.d/sysklogd restart | ||
- | |||
- | root@gate:~# tail -f /var/log/switch.log | ||
- | </code> | ||
- | |||
- | ===== Ubuntu (rsyslogd) ===== | ||
- | <code> | ||
- | root@gate:~# rcsdiff /etc/rsyslog.conf | ||
- | 20,21c20,21 | ||
- | < #$ModLoad imudp | ||
- | < #$UDPServerRun 514 | ||
- | --- | ||
- | > $ModLoad imudp | ||
- | > $UDPServerRun 514 | ||
- | |||
- | root@gate:~# cat /etc/rsyslog.d/30-cisco.conf | ||
- | local0.* -/var/log/cisco.log | ||
- | |||
- | root@gate:~# touch /var/log/cisco.log | ||
- | root@gate:~# chown syslog:adm /var/log/cisco.log | ||
- | |||
- | root@gate:~# service rsyslog stop | ||
- | |||
- | root@gate:~# service rsyslog start | ||
- | </code> | ||
- | |||
- | ===== Настройка коммутатора ===== | ||
- | <code> | ||
- | switch#wr t | ||
- | ... | ||
- | ! | ||
- | logging facility local0 | ||
- | logging gate | ||
- | ! | ||
- | </code> | ||