Solved

syslog-ng error.

Posted on 2008-10-29
3
437 Views
Last Modified: 2013-12-16
I have configured openSuse syslog-ng to send logs to a remote windows server.
in /var/log/message file I get this error message every minute:
"Error connecting to remote host AF_INET(x.x.x.x:514) reopening in 60 seconds. "
does any body know what does it mean and how to resove it.

my entry in syslog-ng.conf
destination eventmanager { udp("x.x.x.x" port(514)); };
log { source(src); destination(eventmanager); };

there is a firewall between the client and the remote server.  

Thank you.
Abdellah
0
Comment
Question by:AbdellahT
3 Comments
 
LVL 19

Expert Comment

by:jools
ID: 22836400
Is the syslog server on the windows system accept remote connections?
0
 
LVL 7

Accepted Solution

by:
macker- earned 500 total points
ID: 22836773
Just to confirm, "x.x.x.x" is a correct and valid IP address, that you've obscured for the purposes of this question?

Have you verified that the firewall is not rejecting the packets, and that the Windows server is configured to accept them?

In Windows, you can do a basic test by opening the command prompt, and running the command "netstat -an"; you should see an entry, such as "UDP    0.0.0.0:514           *:*".  If there is no such entry, then the Windows server is not listening.

It wouldn't hurt to verify that packets are being sent out, and received.  On the Linux side, you can use tcpdump, e.g. `tcpdump -p udp port 514 and dst 1.2.3.4`, where 1.2.3.4 is the address of the Windows server, as defined in syslog-ng.conf.  Similar monitoring on the Windows side would be useful, using your favorite sniffer, if one is available and able to be run on this host.
0

Featured Post

How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

Join & Write a Comment

Daily system administration tasks often require administrators to connect remote systems. But allowing these remote systems to accept passwords makes these systems vulnerable to the risk of brute-force password guessing attacks. Furthermore there ar…
Join Greg Farro and Ethan Banks from Packet Pushers (http://packetpushers.net/podcast/podcasts/pq-show-93-smart-network-monitoring-paessler-sponsored/) and Greg Ross from Paessler (https://www.paessler.com/prtg) for a discussion about smart network …
Learn how to get help with Linux/Unix bash shell commands. Use help to read help documents for built in bash shell commands.: Use man to interface with the online reference manuals for shell commands.: Use man to search man pages for unknown command…
Learn how to navigate the file tree with the shell. Use pwd to print the current working directory: Use ls to list a directory's contents: Use cd to change to a new directory: Use wildcards instead of typing out long directory names: Use ../ to move…

706 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now