-
as seen on Server Fault
- Search for 'Server Fault'
So.. I've installed Logstash, and instead of using the logstash shipper (because it needs the JVM and is generally massive), I'm using rsyslogd with the following configuration.
# Use traditional timestamp format
$ActionFileDefaultTemplate RSYSLOG_TraditionalFileFormat
$IncludeConfig /etc/rsyslog…
>>> More
-
as seen on Server Fault
- Search for 'Server Fault'
I'm running a Debian server and a couple of days ago my rsyslog started to behave very weird, the daemon is running but it doesn't seem to do anything. Many people use the system but I'm the only one with (legal) root access.
I'm using the default rsyslogd configuration (if you think is relevant…
>>> More
-
as seen on Server Fault
- Search for 'Server Fault'
I installed rsyslogd on ubuntu server, started it and everything looks fine, but the port the server should listen on is not opened.
ubuntu@node7:~$ sudo service rsyslog restart
rsyslog stop/waiting
rsyslog start/running, process 14114
Netstat shows it is not listening:
ubuntu@node7:~$ netstat…
>>> More
-
as seen on Server Fault
- Search for 'Server Fault'
I'm having a problem using syslog drains as described in https://devcenter.heroku.com/articles/logging.
To summarize, I have an Ubuntu 10.04 instance on EC2 that is running rsyslogd. I've also set up the security groups as they describe, and added a syslog drain using a command like heroku drains:add…
>>> More
-
as seen on Server Fault
- Search for 'Server Fault'
Hi *,
I would like to email snort alerts from my Debian Lenny fw. Syslog is sending log messages from the firewalls to a central rsyslog.
On my central rsyslog, I got something like :
$ModLoad ommail
$ActionMailSMTPServer server.company.local
$ActionMailFrom [email protected]
$ActionMailTo syslog@company…
>>> More
