[rsyslog-notify] Forum Thread: Re: Unable to forward mule logs - (Mode 'reply')
noreply at adiscon.com
noreply at adiscon.com
Thu Apr 10 06:36:09 CEST 2014
User: dlang
Forumlink: http://kb.monitorware.com/viewtopic.php?p=24524#p24524
Message:
----------
if you see it in a tcpdump on the server (with the correct IP and port) but
it does not show up in rsyslog it's almost certianly iptables
iptables is not a service that runs that you start and stop with the
service command. to see what iptables filters are in place, you need to run
the command iptables -L -n
but you do have something else screwey going on.
your configurations say to use port 514, but your tcpdump is showing port
15141 and 15145, there is no way that that is correct
on the client, you have the config
*.* @10.1XX.XX.XX:514
so you should do a tcpdump for port 514, if you have other traffic on other
ports, that's not syslog traffic.
David Lang
More information about the rsyslog-notify
mailing list