[rsyslog-notify] Forum Thread: Re: Syslog forward logs to Rsyslog centralize - (Mode 'reply')
noreply at adiscon.com
noreply at adiscon.com
Mon Feb 24 10:55:01 CET 2014
User: trungmv
Forumlink: http://kb.monitorware.com/viewtopic.php?p=24252#p24252
Message:
----------
Hello David,
Thanks for feedback.
I did not see any UDP on Centralized server when used tcpdump.
On Centralized Server i disabled firewall and security, when checking by
netstat:
[code:2czzgg88] netstat -anp | grep 514
tcp 0 0 0.0.0.0:20514
0.0.0.0:* LISTEN 28298/rsyslogd
tcp 0 0 0.0.0.0:514
0.0.0.0:* LISTEN 28298/rsyslogd
udp 0 0 0.0.0.0:514
0.0.0.0:* 28298/rsyslogd
[/code:2czzgg88]
On client has firewall and checking netstat:
[code:2czzgg88]netstat -anp | grep 514
udp 0 0 0.0.0.0:514
0.0.0.0:* 21877/syslogd
[/code:2czzgg88]
514 port is open both of on 2 Centralized Server and client.
Do i need to create rule on iptables on client to forward to Centralized
server?
How to do that?
Best regards,
More information about the rsyslog-notify
mailing list