Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [syslog]

syslog is a standard for logging messages about the operation of a system.

syslog is a standard that defines the format of messages about a system's operation. They are further categorized by facility (user,mail,kern), etc and a severity (critical, emergency, informational, etc). These messages are usually then processed by a network monitoring system to take appropriate action. For example, on an emergency message, staff could be paged to resolve the issue, whereas long term analysis could be done on informational messages to properly maintain sytems.

660 questions
0
votes
1 answer

syslog-ng 2.0.9 closing tcp connections from some clients instantly..?

I've a syslog-ng instance on 2.0.9, which is old, but... this is enterprise IT and upgrading the versions is... fun... running on Solaris 10. I have this strange problem where some clients stop being able to stay connected to the server on TCP. When…
Chris Phillips
  • 254
  • 4
  • 15
0
votes
1 answer

intercept, evaluate, change syslog messages

is it possible to intercept syslog messages and evaluate (in special cases change) them before they are written into /var/log/? At the moment i m using inotify to monitor the log file and write the evaluated log into a new file.
inselberg
  • 165
  • 4
0
votes
3 answers

Syslog-ng.conf csv parser lost first columns

I try to split information that come from IIS server with syslog-ng configuration. I create and fill the syslog-ng.conf but my csv parser lost the first column. let see: source s_network { udp(ip(0.0.0.0) port(514)); }; template test { …
tejerka
  • 21
  • 2
0
votes
1 answer

syslog-ng stopped and don't want to start

I noticed lately that my syslog is empty. I tried restarting it but i get this error: $ /etc/init.d/syslog-ng reload Reload system logging: syslog-ngsyntax error in /etc/syslog-ng/syslog-ng.conf at line 99. syslog-ng documentation:…
mariotanenbaum
  • 382
  • 5
  • 14
0
votes
2 answers

log server setup and testing, with log manager opensource

I've been trying to get a new, centralized, log-server up and running for some testing and have run into some problems. First part is that I've installed Kibana but can't get anything indexed, tried most of Kibanas own troubleshoot. It seems that it…
Patrik
  • 7
  • 4
0
votes
0 answers

VMware ESX/i syslog content

I am working on an expansion of our monitoring footprint, and we are currently looking at including data from our visualized environment. As our monitoring license is based on logged volumes, and we are likely to need an increase in infrastructure.…
MHibbin
  • 103
  • 2
0
votes
1 answer

Can I collect Syslog events in the Windows Event Collector?

I have a couple of *nix based systems that I'd like to start collecting logging information for. Is there a way to forward Syslog events to a Widnows server running the Windows Event Collector service?
bshacklett
  • 1,378
  • 4
  • 19
  • 39
0
votes
2 answers

Setting up SysLog on Windows

I'm trying without any luck to use NTSysLog in order to grab my network computers Security Logs and send them into a Log Service (Loggly in this case). I can install and run NTSysLog from a Windows 7 Professional machine from Loggly I only have…
balexandre
  • 567
  • 2
  • 13
  • 26
0
votes
2 answers

Is it possible to modify the date/time format for sendmail logs?

CentOS 5.x | SendMail I'm cross-referencing logs with another application/server and would like to change the date format on the SendMail maillog. Presently it's MMM DD HH:MM:SS Is there any way to change that? Where is it defined?
Mike B
  • 11,871
  • 42
  • 107
  • 168
0
votes
1 answer

Route from Cisco ASA over site to site VPN

I want to be able to push f/w logging traffic to a server at a remote site. This server is accepting syslog traffic on port 514. In the ASA I've configured it to use this server as a syslog server. The Cisco f/w's inside interface address is…
Wookie321
  • 13
  • 3
0
votes
2 answers

MySQL server stops randomly. Is it possible that system kills it during high loads or low available memory?

Possible Duplicate: How to diagnose causes of oom-killer killing processes I have an Ubuntu webserver (Apache + MySQL + PHP) on a very small machine on Amazon Web Services (EC2 micro instance). Website runs fine, very fast. So, our little traffic…
lorenzo-s
  • 347
  • 4
  • 10
  • 19
0
votes
1 answer

syslog log of TCP packet

Occasionally, I noticed a lot of following messsages in syslog Nov {datetime} hostname kernel: [8226528.586232] AIF:PRIV TCP packet: IN=eth0 OUT= MAC={mac} SRC={sourceip} DST={destinationip} LEN=60 TOS=0x00 PREC=0x00 TTL=63 ID=20361 DF PROTO=TCP…
com
  • 261
  • 2
  • 15
0
votes
1 answer

Kernel Logging disabled?

uname -a Linux host 2.6.32-279.9.1.el6.i686 #1 SMP Tue Sep 25 20:26:47 UTC 2012 i686 i686 i386 GNU/Linux And start ups: ls /etc/init.d/ abrt-ccpp certmonger dovecot irqbalance matahari-broker mdmonitor nfs proftpd…
Tiffany Walker
  • 6,681
  • 14
  • 56
  • 82
0
votes
1 answer

Syslog-ng prepends <[0-9]+> to my messages

I'm writing some parsing logic for syslog-ng messages and am noticing that for many of the commands syslog-ng prepends a <[0-9]+> string to most of my messages. Here is an example from me running sudo: <85>Aug 2 09:42:09 sholsapp-ld sudo: sholsapp…
gnucom
  • 197
  • 8
0
votes
1 answer

Amavisd-new cannot start - missing Unix::Syslog (CentOS)

I followed the basic instructions here for installing amavisd, spamassassin + clamav... http://wiki.centos.org/HowTos/Amavisd I get the following error when trying to start amavisd... # service amavisd start Starting Mail Virus Scanner (amavisd):…
Paul Fernihough
  • 71
  • 3
1 2 3
43 44