Hi, Concerning how to tell a given log server to accept log input from
another host just watchout /etc/syslogd.conf
you will find something like...
# /etc/syslog.conf
# For info about the format of this file, see "man syslog.conf" (the =
BSD man
# page), and /usr/doc/sysklogd/README.linux.
#
# My changes
#*.=3Dinfo;=3Dnotice =
/var/log/syslog
*.=3Dinfo;*.=3Dnotice /usr/adm/messages
*.=3Ddebug /usr/adm/debug
# We don't log messages of level 'warn'. Why? Because if you're =
running
# a news site (with INN), each and every article processed generates a
# warning and a disk access. This slows news processing to a crawl.
# If you want to log warnings, you'll need to uncomment this line:
*.warn /usr/adm/messages
*.err
/usr/adm/syslog
# Logging kernel complains
*.=3Dkern /usr/adm/syslog
# FRED
# Down here you can decide the name of the remote host possibly binding =
the
remote host's ip address with his relative name in /etc/hosts.
# then put in the hostname here... It should work..... AS concerning =
what to
do in the router side....... don't anything to say....=20
# don't have the possibily to "play with routers... :(( ...
# This might work instead to log on a remote host:
# FRED
# * @hostname
# END SECTION
see ya
FREDIE.
> -----Messaggio originale-----
> Da: many Lists.. [SMTP:many_lists@yahoo.com]
> Inviato: venerd=EC 26 luglio 2002 15.31
> A: security-discuss@linuxsecurity.com
> Oggetto: Syslog and Router
>=20
>=20
> I read it in a cisco book that while applying access
> lists in router, we can choose also=20
> whether to log any packet matching a particular access
> rule or not, If we don't define whether to log it on
> some syslog server then logs are displayed on console.
> However it's written in book that we can get logs via
> some syslog server remotely.
> I need hints and tips on how do i setup a syslog
> server to accept logs input from=20
> router's ip only!!! and how do i define the syslog
> server's ip in router because i couldnt find it in my
> cisco's book anywhere. I have cisco book by Todd
> Lammale.
>=20
> Thanks in advance
>=20
> __________________________________________________
> Do You Yahoo!?
> Yahoo! Health - Feel better, live better
> http://health.yahoo.com
> =
------------------------------------------------------------------------=
> To unsubscribe email security-discuss-request@linuxsecurity.com
> with "unsubscribe" in the subject of the message.
------------------------------------------------------------------------
To unsubscribe email security-discuss-request@linuxsecurity.com
with "unsubscribe" in the subject of the message.
