Hi everyone,
I have just deployed a new syslog server for our Cisco switches, routers and access points (more than 250 devices) and I am facing a weird problem. The syslogd seems to be working but with flaws. Here is the situation:
Additional information:
So, I know that I just can install and use syslog-ng instead of syslogd for this case and I am almost sure that it will work. Well, the truth is that I am a real bull headed person who really wants to understand "what is going on". Any help will be truly appreciated. Thanks in advance...
About me:
I have just deployed a new syslog server for our Cisco switches, routers and access points (more than 250 devices) and I am facing a weird problem. The syslogd seems to be working but with flaws. Here is the situation:
- I logged into one of our cisco switches and changed its logging ip to the syslog server.
- Logged into the switch and simply did something that produces a syslog connection (conf t; <enter>; <enter>; end)
- Everything worked fine and I had that log entry in my syslog server
- After that I changed my syslog server ip to its new location (all devices are configured to send their logs to this new IP)
- syslog log file had a few log entries and than almost nothing (explained below)
Additional information:
- tshark interface dump shows about 5 to 10 entries per second and the log file grows about 1 entry per 30 seconds
- I have disabled ipf (and even rebooted), and nothing has changed
- The server in question is a virtual machine with adequate resources
- Our previous syslog server (ubuntu) had exactly the same problems with syslogd and I installed and used syslog-ng (without any problems)
- I can paste my configuration files if desired
So, I know that I just can install and use syslog-ng instead of syslogd for this case and I am almost sure that it will work. Well, the truth is that I am a real bull headed person who really wants to understand "what is going on". Any help will be truly appreciated. Thanks in advance...
About me:
- I am totally new to FreeBSD world (6 months) and have almost no experience on any Linux distros. According to my decent experience with FreeBSD, I can only say that FreeBSD changed my whole IT vision and understaning (You were living in a dream world "Oke").