Server Fault

Questions tagged [rsyslog]

Ask Question

rsyslog is an enterprise-ready replacement for the syslog daemon on Linux and other UNIX operating systems.

582 questions
Newest
Active
Bountied
Unanswered
Filter by
Sorted by
Tagged with
0
votes
1answer
60 views

rsyslog, is there a way to see the facility codes of messages recieved?

I have a cisco ftd sending logs tagged with local3(19) however I am still seeing some messages ending up in my users.log instead of where i have them configured to be sent. Is that where they would ...
0
votes
0answers
10 views

Rsyslog creates filename with utf8 characters

I have the following configuration in my rsyslog server (version 8.16 on ubuntu 16.04): input( type="imrelp" port="514" ) template( name="path" type=&...
0
votes
0answers
13 views

Create custom logrotate for remote logs

Hi this is related to this question. I am running CentOS8 + SELinux set to enforcing. I need some info on how to properly create a logrotate for my remote logs that use the template of $template ...
0
votes
0answers
22 views

how to avoid logging to /var/log/syslog for a given application?

I have an application which successfully logs (via local0) to its own files, the problem is that it keeps logging to /var/log/syslog, which is what I want to avoid. rsyslog version: rsyslogd 8.1901.0 ...
0
votes
0answers
24 views

Local logs are not being written after remote logs- rsyslog

My remote logs are going to DB as well as written on server (they both are working fine) but the problem is local rsyslog server is not writing any logs to local files. /etc/rsyslog.d/00-mysql.conf ...
0
votes
0answers
7 views

localise settings for custom log files with custom configs

I'm trying to change the permissions of the log file I create. The configuration is in rsyslog.d/ directory, but whenever I change the file permissions with $Umask 0000 $FileCreateMode 0644 It's ...
0
votes
0answers
17 views

Prevent rsyslog remote logs to save in local /var/log after they have been written to mysql

I just want to sav remote logs to mysql database, which it is working but it also saving it in /var/log files, also I see remote logs in /var/log but not the local host logs, how can I enable that. /...
0
votes
0answers
12 views

rsyslog: How to get imuxsock to read kernel messages?

Does anyone have any idea how to get imuxsock to read kernel messages? We have been having trouble getting any rule in an imuxsock ruleset to read kernel messages, in particular those from iptables. ...
0
votes
0answers
44 views

How to compress log which is differed by name and date

Does anyone know how to compress log if the log contains date. For example: /var/log/example/examplelog-20202905.log /var/log/example/examplelog-20203005.log /var/log/example/examplelog-20203105.log ...
1
vote
1answer
85 views

rsyslog has no /var/lib/rsyslog directory, which results in: “Permission denied', path: '/imjournal.state.tmp”

Host details: [email protected]:~$ cat /etc/redhat-release CentOS Linux release 7.6.1810 (Core) [email protected]:~$ uname -a Linux host.example.com 3.10.0-693.el7.x86_64 #1 SMP Tue Aug 22 21:09:27 UTC 2017 ...
0
votes
1answer
29 views

Unable to log with HAProxy

I've been following the instructions found here, https://www.haproxy.com/blog/introduction-to-haproxy-logging/, to setup our logging. As documented, I made an rsyslog config file, haprorxy_log.conf, ...
0
votes
1answer
73 views

CentOS 8 remote logging logs on both custom log and /var/log/messages

I'm trying to configure a remote log host for my servers (all CentOS 8). I added this on my central server if $fromhost-ip == '123.123.123.123' then /var/log/{{hostname}}.log Also I changed my client ...
0
votes
0answers
41 views

Multiple SFTP Servers sharing common chroot path logging issue

I am setting up an SFTP service with multiple EC2 instances for High Availability on AWS with a common EFS Share (mounted at /efs/sftp). ,--------, | | | ...
0
votes
1answer
31 views

How to stream some logs over TCP from rsyslog in Docker?

I need a very simple thing (for an integration test of a larger system, orchestrated by docker-compose): to setup a Debian based Docker image with rsyslog inside, so that when it is run, rsyslog will ...
0
votes
0answers
16 views

Rsyslog - debugg error logs

I run rsyslog in the debugg mode (-dn) and I show this logs : 0153.213242514:main thread : nsd_ptcp.c: We could initialize 1 TCP listen sockets out of 2 we received - this may or may not be an ...

15 30 50 per page
1
2 3 4 5
ā€¦
39