This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision | ||
использование_протокола_syslog [2010/06/01 11:59] val |
использование_протокола_syslog [2013/05/22 13:50] (current) |
||
---|---|---|---|
Line 1: | Line 1: | ||
====== Использование протокола SYSLOG ====== | ====== Использование протокола SYSLOG ====== | ||
- | !!! add access list logging | + | * [[Регистрация событий в FreeBSD]] |
- | + | * [[Регистрация событий в Linux]] | |
- | ===== FreeBSD ===== | + | * [[Общие настройки сетевого оборудования Cisco#Управление log сообщениями]] в оборудовании Cisco |
- | <code> | + | |
- | [gate:~] # grep syslog /etc/rc.conf | + | |
- | syslogd_flags="-a 192.168.X.0/24:*" | + | |
- | + | ||
- | [gate:~] # grep local0 /etc/syslog.conf | + | |
- | local0.* /var/log/switch.log | + | |
- | + | ||
- | [gate:~] # touch /var/log/switch.log | + | |
- | + | ||
- | [gate:~] # /etc/rc.d/syslogd restart | + | |
- | + | ||
- | [gate:~] # tail -f /var/log/switch.log | + | |
- | </code> | + | |
- | + | ||
- | ===== Ubuntu (syslogd) ===== | + | |
- | <code> | + | |
- | root@gate:~# cat /etc/default/syslogd | + | |
- | ... | + | |
- | SYSLOGD="-r" | + | |
- | + | ||
- | root@gate:~# cat /etc/syslog.conf | + | |
- | ... | + | |
- | local0.* /var/log/switch.log | + | |
- | + | ||
- | root@gate:~# touch /var/log/switch.log | + | |
- | + | ||
- | root@gate:~# chown syslog:adm /var/log/switch.log | + | |
- | + | ||
- | root@gate:~# /etc/init.d/sysklogd restart | + | |
- | + | ||
- | root@gate:~# tail -f /var/log/switch.log | + | |
- | </code> | + | |
- | + | ||
- | ===== Ubuntu (rsyslogd) ===== | + | |
- | <code> | + | |
- | root@gate:~# rcsdiff /etc/rsyslog.conf | + | |
- | 20,21c20,21 | + | |
- | < #$ModLoad imudp | + | |
- | < #$UDPServerRun 514 | + | |
- | --- | + | |
- | > $ModLoad imudp | + | |
- | > $UDPServerRun 514 | + | |
- | + | ||
- | root@gate:~# cat /etc/rsyslog.d/30-cisco.conf | + | |
- | local0.* -/var/log/cisco.log | + | |
- | + | ||
- | root@gate:~# touch /var/log/cisco.log | + | |
- | root@gate:~# chown syslog:adm /var/log/cisco.log | + | |
- | + | ||
- | root@gate:~# service rsyslog stop | + | |
- | + | ||
- | root@gate:~# service rsyslog start | + | |
- | </code> | + | |
- | + | ||
- | ===== Настройка коммутатора ===== | + | |
- | <code> | + | |
- | switch#wr t | + | |
- | ... | + | |
- | ! | + | |
- | logging facility local0 | + | |
- | logging gate | + | |
- | ! | + | |
- | </code> | + |