• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 932
  • Last Modified:

syslog settings

I have Red Hat Linux Enterprise 5 and trying to setup a syslog server, My applications are able to send the logs to the server but either the size limit or retension is only keeping two days of logs. Also does anyone know of a good program to go through the syslog files? hopefully something free

Thanks
0
tofitadmin
Asked:
tofitadmin
3 Solutions
 
Kamaraj SubramanianApplication Support AnalystCommented:
0
 
Cook77Commented:
I don't understand well, but try syslog-ng and logrotate as well to store the logs and backup then. In the syslog-ng you can make filters and you can put separate log files for critical and only informal events! Look at this example:

destination df_BOROKA { file("/var/log/ssg5-BOROKA.log"); };
filter f_BOROKA {
    match("BOROKA-ssg5");
};
log {
        source(s_all);
        filter(f_BOROKA);
        destination(df_BOROKA);
};

If your syslog files contains 'BOROKA-ssg5' it will put ssg5-BOROKA.log file.
0
 
ifreqCommented:
On your server check /etc/logrotate.conf settings, you must increase the log time limit.  What kinda software you need for going through the logfiles? Usually you just "zcat logfile.tar.gz|grep value" or "grep value logfile" if its not archived.
0

Featured Post

Receive 1:1 tech help

Solve your biggest tech problems alongside global tech experts with 1:1 help.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now