Pejman Moghadam / Slackware

Slackware 12.2 - Cisco remote logging to Linux syslogd

Public domain

---

/etc/rc.d/rc.syslog

Edit /etc/rc.d/rc.syslog, inside function syslogd_start(), add -r after /usr/sbin/syslogd
or simply run this command :

sed -i -e 's,/usr/sbin/syslogd$,& -r,' /etc/rc.d/rc.syslog

---

Restart service

/etc/rc.d/rc.syslog restart

---

Firewall

iptables -A INPUT -p udp --dport 514 ! -s 172.31.0.3 -j DROP

---

Cisco config

Cisco-3750#configure terminal 
Cisco-3750(config)#logging host 172.31.0.254
Cisco-3750(config)#exit
Cisco-3750#wri mem

---

BY: Pejman Moghadam
TAG: syslogd, cisco
DATE: 2012-08-18 14:34:33

---

Pejman Moghadam / Slackware [ TXT ]