Solved

Logging Linux to a central syslog server

Posted on 2009-06-29
2
568 Views
Last Modified: 2013-12-06
I am trying to setup my linux server to send syslog messages to a centrol syslog server. I have added the central server to the syslog.conf, however, I am only receiving cron messages. I thought I have set this up correctly so that it sent all messages of level info or higher. Can someone look at my config below and tell me why for instance, I am not getting notices of when users connect via SSH, log in etc. I thought I would recieve them with this setup? Basically, I want everything logged and sent to this central server.



# Log all kernel messages to the console.
# Logging much else clutters up the screen.
#kern.*                                                 /dev/console

# Log anything (except mail) of level info or higher.
# Don't log private authentication messages!
*.info;mail.none;authpriv.none;cron.none                /var/log/messages

# The authpriv file has restricted access.
authpriv.*                                              /var/log/secure

# Log all the mail messages in one place.
mail.*                                                  -/var/log/maillog


# Log cron stuff
cron.*                                                  /var/log/cron

# Everybody gets emergency messages
*.emerg                                                 *

# Save news errors of level crit and higher in a special file.
uucp,news.crit                                          /var/log/spooler

# Save boot messages also to boot.log
local7.*

/var/log/boot.log

*.* @192.168.40.222


0
Comment
Question by:ainselyb
2 Comments
 
LVL 1

Accepted Solution

by:
dontdig earned 250 total points
ID: 24752423
Hi
try this out

user.*      @192.168.1.1

and also see man page of "logger" command here u can get all details about facility and priorities
0
 
LVL 1

Assisted Solution

by:krishna_babu5
krishna_babu5 earned 250 total points
ID: 24770025
As you are trying to log all messages to a central server (192.168.40.222) please comment all lines in your syslog.conf except "*.* @192.168.40.222" and restart the syslog daemon "service syslog restart".
0

Featured Post

Register Today - IoT Current and Future Threats

Are you prepared to protect your organization from current and future IoT Threats?  Join our Wi-Fi expert in episode three of our webinar series for a look at the current state of Wi-Fi IoT and what may lie ahead. Register for our live webinar on April 20th at 9 am PDT!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
iPad Won't Connect 16 101
Can't see Ubuntu desktop on KVM switch unless I reboot the PC 22 110
Cisco Wireless Access Controller 3 34
Ubuntu don’t allow SU command in terminal 7 56
In this article I will describe how to setup a Cisco WLC 5508 to work with Apple's Bonjour protocol across VLANs.  I will also discuss using screen mirroring and Airplay on an AppleTV v3.  This article covers the wireless network only and requires m…
This article will explain how to establish a SSH connection to Ubuntu through the firewall and using a different port other then 22. I have set up a Ubuntu virtual machine in Virtualbox and I am running a Windows 7 workstation. From the Ubuntu vi…
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
How to Install VMware Tools in Red Hat Enterprise Linux 6.4 (RHEL 6.4) Step-by-Step Tutorial

679 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question