3,240
edits
Changes
From SME Server
Jump to navigationJump to search→SME 9.0 Server redirect to another syslog file
==SME Server as SYSLOG server==
==Syslog==
===SME 8.0 Server as SYSLOG server===
If you have network devices or appliances that can log to '''SYSLOG''', the following mini '''Howto''' shows how you can enable your SME Server to capture the '''SYSLOG''' messages and record them in your messages log.
If you have network devices or appliances that can log to '''SYSLOG''', the following mini '''Howto''' shows how you can enable your SME Server to capture the '''SYSLOG''' messages and record them in your messages log.
First create a custom template directory as follows:
First create a custom template directory as follows:
mkdir -p /etc/e-smith/templates-custom/etc/sysconfig/syslog
cd /etc/e-smith/templates-custom/etc/sysconfig/syslog
Using for favourite editor, create the file '''90AllowRemoteSyslog''' and add
Using for favourite editor, create the file '''90AllowRemoteSyslog''' and add
the following lines:
the following lines:
# Enable the syslog to capture remote messages from the network
SYSLOGD_OPTIONS="$SYSLOGD_OPTIONS -r"
Now expand the template and restart the '''SYSLOG''' service.
Now expand the template and restart the '''SYSLOG''' service.
expand-template /etc/sysconfig/syslog
service syslog restart
You can now use:
You can now use:
tail -f /var/log/messages
to view new entries being added to your messages log and see if the '''SYSLOG''' entries of your network device or appliance are showing up.
to view new entries being added to your messages log and see if the '''SYSLOG''' entries of your network device or appliance are showing up.
==== Adding a SYSLOG facility and receive WINDOWS event logs ====
== ADDING A SYSLOG FACILITY AND RECEIVE WINDOWS EVENT LOGS ==
net start evtsys
net start evtsys
===SME 9.0 Server as SYSLOG server===
If you have network devices or appliances that can log to '''SYSLOG''', the following mini '''Howto''' shows how you can enable your SME Server to capture the '''SYSLOG''' messages and record them in your messages log.
You need to be root (su -) to do the following installation actions.
First create a custom template directory as follows:
mkdir -p /etc/e-smith/templates-custom/etc/sysconfig/rsyslog
cd /etc/e-smith/templates-custom/etc/sysconfig/rsyslog
Using for favourite editor, create the file '''90AllowRemoteSyslog''' and add
the following lines:
# Enable the syslog to capture remote messages from the network
SYSLOGD_OPTIONS="-r514 -m 0"
Now expand the template and restart the '''SYSLOG''' service.
expand-template /etc/sysconfig/rsyslog
service rsyslog restart
You can now use:
tail -f /var/log/messages
to view new entries being added to your messages log and see if the '''SYSLOG''' entries of your network device or appliance are showing up.
===SME 9.0 Server redirect to another syslog file===
mkdir -p /etc/e-smith/templates-custom/etc/sysconfig/rsyslog
vim /etc/e-smith/templates-custom/etc/sysconfig/rsyslog/10perso
add this
if $programname == 'grandstream' then /var/log/grandstream/grandstream.log
& stop
then
mkdir /var/log/grandstream
touch /var/log/grandstream/grandstream.log
expand-template /etc/sysconfig/rsyslog
service rsyslog restart
also rotate it
vim /etc/logrotate.d/grandstream
/var/log/grandstream/*.log {
weekly
rotate 5
compress
notifempty
missingok
nocreate
sharedscripts
endscript
}
----
----
----
[[Category:Howto]]
[[Category:Howto]]
[[Category:Administration:Monitoring]]
[[Category:Administration:Monitoring]]
