Mailing List Archive

rsyslog 8.2001
Good day. I'm attempting to set up rsyslog for the first time to capture alerts from some network devices. While linux is not new to me, I am struggling with this. Most of the examples I have been able to locate do not work in version 8.2001. Apparently there has been some major changes in the way the configuration is set up.

What I want to do seems simple enough:


1. I want to catch syslog traps sent from network devices to the rsyslog server (things like cisco routers or Sonicwall firewalls)

2. I'd like to tell rsyslog to park all those logs in a different place than normal (i.e. a larger partition on the hard drive)

What I really can't find is good examples on how to get this configured. The documentation refers to the rsyslog wiki, which has been disabled due to European privacy law issues.

Is there anyone that can point me to some sample configurations to make this work?

TIA

Cliff
This message (including any attachments) is intended only for the use of the individual or entity to which it is addressed and may contain information that is non-public, proprietary, privileged, confidential, and exempt from disclosure under applicable law or may constitute as attorney work product. If you are not the intended recipient, you are hereby notified that any use, dissemination, distribution, or copying of this communication is strictly prohibited. If you have received this communication in error, notify us immediately by telephone and (i) destroy this message if a facsimile or (ii) delete this message immediately if this is an electronic communication. Thank you.
_______________________________________________
rsyslog mailing list
https://lists.adiscon.net/mailman/listinfo/rsyslog
http://www.rsyslog.com/professional-services/
What's up with rsyslog? Follow https://twitter.com/rgerhards
NOTE WELL: This is a PUBLIC mailing list, posts are ARCHIVED by a myriad of sites beyond our control. PLEASE UNSUBSCRIBE and DO NOT POST if you DON'T LIKE THAT.
Re: rsyslog 8.2001 [ In reply to ]
Please post your config. Note: rsyslog always keeps existing config
working, so it is not the age of your samples that is the problem.

Rainer

El vie., 21 ago. 2020 a las 3:12, Clifford McGlamry via rsyslog
(<rsyslog@lists.adiscon.com>) escribió:
>
> Good day. I'm attempting to set up rsyslog for the first time to capture alerts from some network devices. While linux is not new to me, I am struggling with this. Most of the examples I have been able to locate do not work in version 8.2001. Apparently there has been some major changes in the way the configuration is set up.
>
> What I want to do seems simple enough:
>
>
> 1. I want to catch syslog traps sent from network devices to the rsyslog server (things like cisco routers or Sonicwall firewalls)
>
> 2. I'd like to tell rsyslog to park all those logs in a different place than normal (i.e. a larger partition on the hard drive)
>
> What I really can't find is good examples on how to get this configured. The documentation refers to the rsyslog wiki, which has been disabled due to European privacy law issues.
>
> Is there anyone that can point me to some sample configurations to make this work?
>
> TIA
>
> Cliff
> This message (including any attachments) is intended only for the use of the individual or entity to which it is addressed and may contain information that is non-public, proprietary, privileged, confidential, and exempt from disclosure under applicable law or may constitute as attorney work product. If you are not the intended recipient, you are hereby notified that any use, dissemination, distribution, or copying of this communication is strictly prohibited. If you have received this communication in error, notify us immediately by telephone and (i) destroy this message if a facsimile or (ii) delete this message immediately if this is an electronic communication. Thank you.
> _______________________________________________
> rsyslog mailing list
> https://lists.adiscon.net/mailman/listinfo/rsyslog
> http://www.rsyslog.com/professional-services/
> What's up with rsyslog? Follow https://twitter.com/rgerhards
> NOTE WELL: This is a PUBLIC mailing list, posts are ARCHIVED by a myriad of sites beyond our control. PLEASE UNSUBSCRIBE and DO NOT POST if you DON'T LIKE THAT.
_______________________________________________
rsyslog mailing list
https://lists.adiscon.net/mailman/listinfo/rsyslog
http://www.rsyslog.com/professional-services/
What's up with rsyslog? Follow https://twitter.com/rgerhards
NOTE WELL: This is a PUBLIC mailing list, posts are ARCHIVED by a myriad of sites beyond our control. PLEASE UNSUBSCRIBE and DO NOT POST if you DON'T LIKE THAT.