From owner-freebsd-questions@FreeBSD.ORG  Tue Nov 29 01:29:03 2011
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id CFD43106564A
	for <freebsd-questions@freebsd.org>;
	Tue, 29 Nov 2011 01:29:03 +0000 (UTC)
	(envelope-from kayasaman@gmail.com)
Received: from mail-ey0-f182.google.com (mail-ey0-f182.google.com
	[209.85.215.182])
	by mx1.freebsd.org (Postfix) with ESMTP id 5F1088FC15
	for <freebsd-questions@freebsd.org>;
	Tue, 29 Nov 2011 01:29:03 +0000 (UTC)
Received: by eaai12 with SMTP id i12so3656059eaa.13
	for <freebsd-questions@freebsd.org>;
	Mon, 28 Nov 2011 17:29:02 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma;
	h=message-id:date:from:user-agent:mime-version:to:cc:subject
	:references:in-reply-to:content-type;
	bh=NSevWvFFlamEap3LGrqdNAoK934H5QBjEIigdrX+kBY=;
	b=oMxUSK8/AZF3u0YD6HhOCCPmvPOP2DyME7xGaP5wRuiR6LABQbfWnQblwm0LEFbD4r
	uz2BjMuqK/svILT4eBqUUBGWjrJh1mwfIEyDH9w33m6894Ujxw2fN/Gz0lliDYDwx6hB
	3Lof5ImE0wc0tJhJ/1JVpyJwM89dHFVQ0W2Wo=
Received: by 10.180.103.170 with SMTP id fx10mr46675605wib.56.1322530142355;
	Mon, 28 Nov 2011 17:29:02 -0800 (PST)
Received: from Hp2230s.localhost (81-178-2-118.dsl.pipex.com. [81.178.2.118])
	by mx.google.com with ESMTPS id
	m25sm40953584wbp.6.2011.11.28.17.28.59 (version=SSLv3 cipher=OTHER);
	Mon, 28 Nov 2011 17:29:01 -0800 (PST)
Message-ID: <4ED4355A.8030905@gmail.com>
Date: Tue, 29 Nov 2011 03:28:58 +0200
From: Kaya Saman <kayasaman@gmail.com>
User-Agent: Mozilla/5.0 (X11; Linux x86_64;
	rv:7.0) Gecko/20110927 Thunderbird/7.0
MIME-Version: 1.0
To: Adam Vande More <amvandemore@gmail.com>
References: <4ED38578.1000501@gmail.com>
	<CA+tpaK0rkWX8G3hiapZkutK6xvb+c0z6aTK=U=RsC=Pk68mCEA@mail.gmail.com>
	<4ED3CE66.4020903@gmail.com> <4ED3D9BF.701@my.gd>
	<4ED41C5F.3030906@gmail.com> <4ED41E53.6000403@radel.com>
	<4ED42273.7090509@gmail.com>
	<CA+tpaK2W8hPXrvH7k9B_mcFCkO1HEUgm7pPk_Y+J-d7wr3-sMg@mail.gmail.com>
In-Reply-To: <CA+tpaK2W8hPXrvH7k9B_mcFCkO1HEUgm7pPk_Y+J-d7wr3-sMg@mail.gmail.com>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
X-Content-Filtered-By: Mailman/MimeDel 2.1.5
Cc: freebsd-questions@freebsd.org, Jon Radel <jon@radel.com>
Subject: Re: Alternative to syslogd that actually writes external logs to
 files?
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 29 Nov 2011 01:29:04 -0000

On 11/29/2011 03:13 AM, Adam Vande More wrote:
> On Mon, Nov 28, 2011 at 6:08 PM, Kaya Saman <kayasaman@gmail.com 
> <mailto:kayasaman@gmail.com>> wrote:
>
>     Yep! I don't actually run any rules on the firewall even though PF
>     is enabled. it's just meant for fail2ban though.
>
>     However, disabled PF but still not working :-(
>
>
> Can you at least make a connection from the sending to receiving 
> host/port via telnet?
>
>
> -- 
> Adam Vande More

As you know rsyslog works over udp and telnet is a tcp protocol so I 
enabled tcp on port 514 within rsyslog and telnet'ed from my router to 
the syslog server.

No problems!!! It works.

Also netstat -anp tcp/udp | grep 514 shows the server listening on the 
em0 interface with correct IP which isn't a problem additionally.


???