I am having trouble setting up syslog to loghost a cisco switch. It looks like sometinhg is blocking port access on udp 514. I appreciate any help.<br/> I have amended the following line to syslog.conf ( no spaces in whitespace, I used tabs as instructed). Line 10 of syslog configuration file as below.<br/> <br/> local7.notice /var/log/cisco<br/> <br/> ran:<br/> touch /var/log/cisco <br/> to create file with standard permission (644) to receive logging data.<br/> <br/> and ran commands on cisco equip to send logging to solaris box.<br/> <br/> It seems as cisco switch is send logging data out ok. When I make a config change on cisco switch ethereal picks up the following:<br/> <br/> <img src="http://www.primeradesigns.com/ethereal.png"/><br/> <br/>
My host file is as below, I have tried adding loghost to 192.168.1.254 however this makes no difference.<br/> <br/> I read that ipfilter is not on by default and I have not enabled ipfilter. I read that network syslogging is on by default, how wold I confirm this? Why else would udp port 514 be unreachable.<br/> <br/> I greatly appreciate any help.<br/> Kind regards,<br/> Philip<br/> <br/> #################################################################################<br/> # hosts configuration file.<br/> #################################################################################<br/> #<br/> # Copyright 2006 Sun Microsystems, Inc. All rights reserved.<br/> # Use is subject to license terms.<br/> #<br/> # ident "@(#)hosts 1.7 06/08/01 SMI"<br/> #<br/> # Internet host table<br/> #<br/> ::1 localhost<br/> 127.0.0.1 localhost<br/> 10.254.0.254 solaris-devx loghost<br/> 10.254.0.250 osx<br/> 10.254.0.100 c827<br/> 192.168.1.254 solaris-cisco<br/> <br/> <br/> <br/> #################################################################################<br/> # syslog configuration file.<br/> #################################################################################<br/> # This file is processed by m4 so be careful to quote (`') names<br/> # that match m4 reserved words. Also, within ifdef's, arguments<br/> # containing commas must be quoted.<br/> #<br/> *.err;kern.notice;auth.notice /dev/sysmsg<br/> *.err;kern.debug;daemon.notice;mail.crit /var/adm/messages<br/> local7.notice /var/log/cisco<br/> <br/> *.alert;kern.err;daemon.err operator<br/> *.alert root<br/> <br/> *.emerg *<br/> <br/> # if a non-loghost machine chooses to have authentication messages<br/> # sent to the loghost machine, un-comment out the following line:<br/> #auth.notice ifdef(`LOGHOST', /var/log/authlog, @loghost)<br/> <br/> mail.debug ifdef(`LOGHOST', /var/log/syslog, @loghost)<br/> <br/> #<br/> # non-loghost machines will use the following lines to cause "user"<br/> # log messages to be logged locally.<br/> #<br/> ifdef(`LOGHOST', ,<br/> user.err /dev/sysmsg<br/> user.err /var/adm/messages<br/> user.alert `root, operator'<br/> user.emerg *<br/> )<br/> <br/> <br/> #################################################################################<br/> <br/> This message posted from opensolaris.org _______________________________________________ networking-discuss mailing list [EMAIL PROTECTED]
![http://www.primeradesigns.com/ethereal.png"/](http://www.primeradesigns.com/ethereal.png"/){kind=link}