Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [syslog]

syslog is a standard for logging messages about the operation of a system.

syslog is a standard that defines the format of messages about a system's operation. They are further categorized by facility (user,mail,kern), etc and a severity (critical, emergency, informational, etc). These messages are usually then processed by a network monitoring system to take appropriate action. For example, on an emergency message, staff could be paged to resolve the issue, whereas long term analysis could be done on informational messages to properly maintain sytems.

660 questions
4
votes
3 answers

Server crashes Sundays at 6 a.m. - out of memory

I have a weird problem: Every Sunday at 6 am my LAMP server crashes. Looking at the logs I see about 500 apache2 processes at the time (this is a test server without any load - especially not at 6 am) The syslog states the following: May 19 06:00:11…
horen
  • 411
  • 2
  • 7
  • 22
4
votes
2 answers

IIS Advanced Logging Forward to Syslog

I am looking for a method that would allow us to forward the IIS Advanced Logging logs to a centralized log source via syslog or something similar. We are able to perform this currently for the regular IIS logs with Snare; however it does not work…
John
  • 2,276
  • 7
  • 44
  • 60
4
votes
4 answers

CentOS centralised logging, syslogd, rsyslog, syslog-ng, logstash sender?

I'm trying to figure out the best way to setup a central place to store and interrogate server logs. syslog, Apache, MySQL etc. I've found a few different options but I'm not sure what would be best. I'm looking for something that is easy to install…
batfastad
  • 456
  • 1
  • 11
  • 22
4
votes
1 answer

Outbound Traffic Logging on ASA 5520 possible?

Taking a look at the ASDM (6.4) for my ASA 5520, I get a nice summary of the traffic status, with items like "interface traffic usage", and "connections per second". This works well, but only shows the data for the last 5-6 minutes or so.…
j2k4j
  • 119
  • 1
  • 4
4
votes
3 answers

Ubuntu 10.04 syslog not logging to correct file

In a similar vein to Why is Syslog Not Writing Logs To The Designated Files? I'm having a few problems with syslog on Ubuntu 10.0.4 I have an app which I have set to facility local7. I added the following line to…
Richard
  • 41
  • 1
4
votes
1 answer

Rsyslog Discarding Unwanted Messages

Once again, i found that Rsyslog is not as flexible as i expected... My application logs to LOCAL5.* ( depending on the severity ) I would like to see on my centralized log server only LOCAL5.WARNING and above I assumed and tested local5.info …
Arenstar
  • 3,602
  • 2
  • 25
  • 34
4
votes
1 answer

HAProxy running in chroot jail is only logging started messages

I've configured my HAProxy server to run in a chroot jail logging messages to syslog socket. My problem is that the only messsages currently being logged are for when haproxy is starting up. May 26 10:42:37 dev haproxy[13986]: Proxy my_listener…
scarba05
  • 333
  • 6
  • 15
4
votes
1 answer

Unusual server crash on EC2, syslog has line of ^@^@^@^@^@

Trying to get at the root of why a server went down for 20 minutes, I looked at the syslog for that time period and saw this: Jan 3 07:50:01 tools CRON[17085]: (munin) CMD (if [ -x /usr/bin/munin-cron ]; then /usr/bin/munin-cron; fi) Jan 3…
Reed G. Law
  • 337
  • 1
  • 3
  • 10
4
votes
1 answer

vSphere ESXi 5.0 hosts syslog to Graylog2 - Mangled log entries

I'm just setting up graylog2 (which is awesome) to be a syslog server for my virtualised environment. All my hosts and switches are happily logging away to graylog2, which is drawing some pretty graphs. So far, so good. However, when it comes to…
growse
  • 8,020
  • 13
  • 74
  • 115
4
votes
3 answers

Log Shutdown Command Usage/Message

I want to monitor whenever any of our machines run the shutdown command so that it can send an email or notification of an imminent reboot/shutdown. I figured that when shutdown was run it probably relayed the broadcast message to syslog, but I…
Andrew Case
  • 3,489
  • 3
  • 23
  • 39
4
votes
2 answers

Are there some limit on files logged through syslog?

I have a Postfix mail server running on Ubuntu 8.10 and when /var/log/mail.log or any other file reaches exactly 2GB of data syslog stops writing any data to the file. Is there some kind of limit for a file logged through syslog? I'm discussing with…
gaqzi
  • 183
  • 1
  • 6
4
votes
3 answers

Forward UNIX syslog to Windows Event viewer

I'm running a pfSense firewall which runs syslog and can forward it's logs to a remote syslog server. I'd like to be able to view these on my SBS 2011 server's event viewer, via a subscription. I assume there has to be some middleware which…
carlpett
  • 926
  • 8
  • 18
  • 30
4
votes
4 answers

Explain the output of dmesg

I am running a Debian system, and find the output of the dmesg command very helpful. Can somebody explain to me what information is output by the dmesg command? Is it a 1:1 correlation to the kern.* messages in syslog?
Brent
  • 22,857
  • 19
  • 70
  • 102
4
votes
4 answers

Stop Munin messages from /var/log/syslog

I am using munin on a system which is adding a log entry in syslog everytime the munin-node cron job executes. It is not an issue but it sometimes makes other errors spotting difficult. There are entries like Feb 28 07:05:01 li235-57 CRON[2634]:…
Sparsh Gupta
  • 1,127
  • 7
  • 21
  • 31
4
votes
2 answers

how to collect and aggregate logs from multiple machines in Amazon AWS environment

We have multiple Ec2 servers running and they have a tendency to be started and shut down at unpredictable times (based on load etc). What is the best way to collate and aggregate logs from them in one location?
Tarun Upad
  • 71
  • 1
  • 5
1 2 3
43 44