Syslog logs are not being received

This is the place for you, if you got rsyslog up and running but wonder how to make it do what you want.

Moderator: rgerhards

Google Ads


Syslog logs are not being received

Postby baron1234 » Mon Oct 23, 2017 12:09 pm

Hello, everybody,
A device is sent logs to port 1514 of my computer.

But I'm not, getting anything apparently. It is very possible that something in the configuration is not correct. Please help me solve the problem.

these are the steps I have taken:

sudo yum install rsyslog

sudo nano /etc/rsyslog.conf
$ModLoad imtcp
$InputTCPServerRun 1514
$template FILENAME,"/var/log/mylogs/syslog.log

systemctl enable rsyslog

systemctl start rsyslog

netstat --inet -pan | grep 1514
tcp 0 0 0.0.0.0:1514 0.0.0.0:* LISTEN 19881/rsyslogd
tcp 0 0 10.200.14.181:1514 192.168.188.249:48321 ESTABLISHED 19881/rsyslogd

At this point, I'm not getting anything in the mylogs folder.

Thanks
baron1234
New
 
Posts: 3
Joined: Fri Oct 20, 2017 1:16 pm

Urgent Question?

  • Pulling out your Hair?
  • Wasting Time and Money?
  • Deadline Approaching?

Re: Syslog logs are not being received

Postby frantz45 » Mon Oct 30, 2017 10:50 am

Your configuratiuon is ready to receive logs but you need to add a line to say where to put received logs.
For example:
*.* /var/log/received.log
frantz45
New
 
Posts: 4
Joined: Fri Oct 27, 2017 4:19 pm

Google Ads



Return to Configuration

Who is online

Users browsing this forum: No registered users and 1 guest

cron