[aa82]

Hello Friends

We want to log messages from network devices especially routers and switches using syslogd service on AIX. I tried by adding this line to /etc/syslog.conf

*.alert;*.crit;*.err;*.warn;*.info;*.debug /var/log/testlog

I have also attached the packet captured from the switch port on which this server is connected which showing that messages from different servers are coming towards this server but its not logging it.

Can anyone please help to how to do this.

Thanks in advance for your time and assistance.

[ross.mather]

First of all you need to create the logfile (use touch).

After that try again :-)

[aa82]

Hi Ross

I did the same, log file is present there and it is logging local messages.
But its not logging any network message.

# cat /var/log/testlog
Jul 22 11:05:34 omnibus-03 syslog:info syslogd: restart
Jul 22 11:16:16 omnibus-03 syslog:info syslogd: restart
Jul 22 11:16:27 omnibus-03 syslog:info syslogd: restart
Jul 22 11:16:28 omnibus-03 syslog:info syslogd: restart
Jul 22 11:16:30 omnibus-03 syslog:info syslogd: restart
Jul 22 11:50:24 omnibus-03 auth|security:info sshd[307302]: Attempt to write login records by non-root user (aborting)
Jul 22 12:21:38 omnibus-03 user:info syslog: ifconfig -a
Jul 22 15:22:41 omnibus-03 auth|security:info sshd[229626]: Attempt to write login records by non-root user (aborting)

[ross.mather]

How are the messages being sent - via SNMP? Is that properly configured?

[aa82]

Ross I don't know how to check SNMP that ?

[aa82]

Ross
Please tell me how to check SNMP Config ?

[ross.mather]

I'll help point you in the right direction - the rest you are on your own. You need to ddecide and research how you are getting the packets in and where you are to log them.

Maybe this will help:

pSeries and AIX Information Center