RHEL as syslog server


syslog-ng express installation

1.stop syslog
  /etc/init.d/syslog stop
  chkconfig --level 2345 syslog off

2.install eventlog-0.2.5-6
  ftp://ftp.pbone.net/mirror/centos.karan.org/el5/extras/testing/i386/RPMS/eventlog-0.2.5-6.el5.kb.i386.rpm
  # rpm -ivh eventlog-0.2.5-6.el5.kb.i386.rpm

3.install syslog-ng-2.1.3-2
  ftp://ftp.pbone.net/mirror/ftp.silfreed.net/repo/rhel/5/i386/silfreednet/RPMS/syslog-ng-2.1.3-2.el5.i386.rpm
  # rpm -ivh syslog-ng-2.1.3-2.el5.i386.rpm

4.You will need to edit the syslog configuration under /etc/syslog-ng/syslog-ng.conf and you will need to add three entries. The first addition is to configure the source for log messages from the network and enabling both udp/tcp on port 514, you may add the following under the default "src" entry.


source network {
udp6( port(514) );
tcp6( port(514) );
};


the next two entries will define the destination and how it'll log. You will add the following at the end of the syslog-ng.conf configuration file.

destination log_remote {
file("/var/log/remote/$HOST_FROM/$YEAR-$MONTH/messages-$YEAR-$MONTH-$DAY"
create_dirs(yes) frac-digits(3)
template("$ISODATE $PROGRAM $MSGONLY\n")
template_escape(no)
);
};

log {
source(network);
destination(log_remote);
};

The "log_remote" destination will send all logs from your ESX(i) hosts into/var/log/remote and will have the following format: $HOST_FROM/$YEAR-$MONTH/messages-$YEAR-$MONTH-$DAY

5. restart syslog-ng service 

6. config esxi syslog destination



留言

張貼留言

這個網誌中的熱門文章

Install vSphere 4.1 Update Management display "ODBC 32bit"

Install the ODBC drivers. For Microsoft SQL Server database servers, install the 64-bit database ODBC drivers on your Microsoft Windows system. When you install the 64-bit drivers, the 32-bit drivers are installed automatically. For Oracle database servers, install the 32-bit database ODBC drivers on your Microsoft Windows system. Run the 32-bit ODBC Administrator application, located at [WindowsDir]\SysWOW64\odbcad32.exe. Use the application to create your DSN. You will now have a DSN that is compatible with the Update Manager server. When the Update Manager installer prompts you for a DSN, you should select the 32-bit DSN. Note: The Microsoft SQL Server 2005 Express database package is installed and configured when you select Microsoft SQL Server 2005 Express as your database during the VMware vCenter Update Manager installation or upgrade. No additional configuration is required.
閱讀完整內容

How to install open VM tools on Ubuntu 14.04

VMware KB https://kb.vmware.com/s/article/2075048 To obtain and import the VMware Packaging Public Keys:   Create a directory on the virtual machine to store the VMware Packaging Public Keys. Download all the VMware Public Packaging Public Key files from the https://packages.vmware.com/tools/keys directory. Save the files to the directory you created. For each key that you download, run this command to import the key: $ sudo apt-key add / key_path / key_name Where key_path is the directory in which you saved the keys and key_name is the file name of a key. Create the file /etc/apt/sources.list.d/vmware-tools.list with this content: deb https://packages.vmware.com/packages/ubuntu precise main   To install the package, run this command: $ sudo apt-get update $ sudo apt-get install open-vm-tools-deploypkg
閱讀完整內容