Remote Logging
This allows logging to syslog (/var/log/messages) from a remote router or firewall.
Start syslogd with -r option.
Check that your firewall will allow UDP packets and/or forward them on port 514.
On the remote firewall/router, set it for remote logging to the IP address of the logging host. For example, on a Cisco router use this command:
logging ip.of.your.server
SME Server
You can either implement remote logging on a permanent or temporary basis. On a permamnent basis, you would implement these modifications using the templates-custom method.
Temporary syslog Server
These modifications will disappear the next time the config file is rebuilt by the system.
Edit the /etc/sysconfig/syslog file and add '-r' to the options:
vi /etc/sysconfig/syslog
Then edit this line adding the '-r'.
SYSLOGD_OPTIONS="-r -m 0"
Restart the syslog service:
service syslog restart
Open the SME 7 firewall to accept syslog traffic (assumes eth0 as internal (LAN) interface):
/sbin/iptables --append INPUT -p udp --dport 514 -i eth0 -j ACCEPT
Monitor the system log:
tail -f /var/log/messages
| < Prev | Next > |
|---|
