This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision | ||
использование_протокола_syslog [2010/11/16 17:10] val |
использование_протокола_syslog [2013/05/22 13:50] (current) |
||
---|---|---|---|
Line 1: | Line 1: | ||
====== Использование протокола SYSLOG ====== | ====== Использование протокола SYSLOG ====== | ||
- | + | * [[Регистрация событий в FreeBSD]] | |
- | ===== FreeBSD ===== | + | * [[Регистрация событий в Linux]] |
- | <code> | + | * [[Общие настройки сетевого оборудования Cisco#Управление log сообщениями]] в оборудовании Cisco |
- | [server:~] # grep syslog /etc/rc.conf | + | |
- | syslogd_flags="-a 192.168.X.0/24:*" | + | |
- | + | ||
- | [server:~] # cat /etc/syslog.conf | + | |
- | ... | + | |
- | local0.* /var/log/cisco.log | + | |
- | !ppp | + | |
- | ... | + | |
- | + | ||
- | [server:~] # touch /var/log/cisco.log | + | |
- | + | ||
- | [server:~] # /etc/rc.d/syslogd restart | + | |
- | + | ||
- | [server:~] # tail -f /var/log/cisco.log | + | |
- | </code> | + | |
- | + | ||
- | ===== Ubuntu 8.04 (syslogd) ===== | + | |
- | <code> | + | |
- | root@server:~# cat /etc/default/syslogd | + | |
- | ... | + | |
- | SYSLOGD="-r" | + | |
- | + | ||
- | root@server:~# cat /etc/syslog.conf | + | |
- | ... | + | |
- | local0.* /var/log/cisco.log | + | |
- | + | ||
- | root@server:~# touch /var/log/cisco.log | + | |
- | + | ||
- | root@server:~# chown syslog:adm /var/log/cisco.log | + | |
- | + | ||
- | root@server:~# /etc/init.d/sysklogd restart | + | |
- | + | ||
- | root@server:~# tail -f /var/log/cisco.log | + | |
- | </code> | + | |
- | + | ||
- | ===== Ubuntu 10.04 (rsyslogd) ===== | + | |
- | <code> | + | |
- | root@server:~# cat /etc/rsyslog.conf | + | |
- | ... | + | |
- | $ModLoad imudp | + | |
- | $UDPServerRun 514 | + | |
- | ... | + | |
- | + | ||
- | root@server:~# cat /etc/rsyslog.d/30-cisco.conf | + | |
- | local0.* -/var/log/cisco.log | + | |
- | + | ||
- | root@server:~# touch /var/log/cisco.log | + | |
- | root@server:~# chown syslog:adm /var/log/cisco.log | + | |
- | + | ||
- | root@server:~# service rsyslog stop | + | |
- | + | ||
- | root@server:~# service rsyslog start | + | |
- | </code> | + | |
- | + | ||
- | ===== Настройка cisco ===== | + | |
- | + | ||
- | Вывод логов на экран telnet сессии | + | |
- | <code> | + | |
- | router.corpX.un# terminal monitor | + | |
- | </code> | + | |
- | + | ||
- | Отправка логов на syslog сервер | + | |
- | <code> | + | |
- | configure terminal | + | |
- | logging facility local0 | + | |
- | logging host server | + | |
- | </code> | + |