From owner-freebsd-questions@FreeBSD.ORG Mon Jan 30 21:09:04 2012 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 7A10E106567D for ; Mon, 30 Jan 2012 21:09:04 +0000 (UTC) (envelope-from bsd@todoo.biz) Received: from newmail.rmm.fr (newmail.rmm.fr [87.98.206.99]) by mx1.freebsd.org (Postfix) with ESMTP id 101A48FC14 for ; Mon, 30 Jan 2012 21:09:03 +0000 (UTC) Received: from newmail.rmm.fr (localhost [127.0.0.1]) by newmail.rmm.fr (Postfix) with ESMTP id 3DE9078C39 for ; Mon, 30 Jan 2012 22:09:03 +0100 (CET) X-Virus-Scanned: amavisd-new 2.7.0 (20110701) at rmm.fr Received: from newmail.rmm.fr ([127.0.0.1]) by newmail.rmm.fr (newmail.rmm.fr [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id JGQdG8UNJ9fv for ; Mon, 30 Jan 2012 22:09:03 +0100 (CET) Received: from newmail.rmm.fr (newmail.rmm.fr [87.98.206.99]) (using TLSv1 with cipher AES128-SHA (128/128 bits)) (No client certificate requested) (Authenticated sender: hidden) by newmail.rmm.fr (Postfix) with ESMTPSA id D154178C2E for ; Mon, 30 Jan 2012 22:09:02 +0100 (CET) Content-Type: text/plain; charset=windows-1252 Mime-Version: 1.0 (Apple Message framework v1084) From: bsd In-Reply-To: Date: Mon, 30 Jan 2012 22:09:02 +0100 Content-Transfer-Encoding: quoted-printable Message-Id: <7206A8D3-2E81-4984-981C-4B6D04F5C347@todoo.biz> References: <31C3E932-AC4E-473B-89ED-FFB21CAA7C34@todoo.biz> <4F26BE75.5080708@infracaninophile.co.uk> To: Liste FreeBSD X-Mailer: Apple Mail (2.1084) Subject: Re: Setting up a syslog server in a jail [SOLVED] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 30 Jan 2012 21:09:04 -0000 Le 30 janv. 2012 =E0 17:15, bsd a =E9crit : > Le 30 janv. 2012 =E0 16:59, Matthew Seaman a =E9crit : >=20 >> On 30/01/2012 15:40, bsd wrote: >>> I am still not able to get the log correctly sent to the specified = jail=85 ??=20 >>=20 >> Are you running syslogd in the host environment? >=20 > Yes I am running it both in the host and jail environment.=20 >=20 >> If so, it's probably >> bound to INADDR_ANY and thus pre-empted your jailed syslog from = binding >> to a network port. >>=20 >> Try adding >>=20 >> syslogd_flags=3D"-ss" >=20 > Ok, I have the following sockstat on the host environment :=20 >=20 > surf:root 17:09:02 ~ # sockstat | grep sysl > root syslogd 3176 4 dgram /var/run/log > root syslogd 3176 5 dgram /var/run/logpriv > root syslogd 3153 4 dgram /var/run/log > root syslogd 3153 5 dgram /var/run/logpriv > root syslogd 3153 6 udp4 1.2.3.6:514 *:* > root syslogd 2191 4 dgram /var/run/log > root syslogd 2191 5 dgram /var/run/logpriv > root syslogd 2191 6 udp4 1.2.3.5:514 *:* > root syslogd 1947 4 dgram /var/run/log > root syslogd 1947 5 dgram /var/run/logpriv > root syslogd 1947 6 dgram /var/run/log > root syslogd 1947 7 dgram /var/named/var/run/log > root syslogd 1947 8 udp4 1.2.3.4:514 *:* >=20 >=20 > My syslog server is supposed to be on 1.2.3.6=20 >=20 > In the jail environment I have :=20 >=20 > logjail# sockstat | grep syslo > root syslogd 3153 4 dgram /var/run/log > root syslogd 3153 5 dgram /var/run/logpriv > root syslogd 3153 6 udp4 1.2.3.6:514 *:* >=20 > =85 But still no log from outside the jail=85 ? =20 >=20 >=20 >=20 >>=20 >> in the host environment. That prevents syslogd from listening via a >> network port at all, although it will still happily log messages from >> the local machine. >>=20 >> Use sockstat(1) to diagnose what addresses syslogd(8)s have bound to. >>=20 >=20 >=20 > Thanks for your answers Problem was with the IP I was listening on.=20 Was the wrong one.=20 Found that using the debug option of syslog "-d"=20 Very straight forward after debug was enable.=20 >=20 >> Cheers, >>=20 >> Matthew >>=20 >> --=20 >> Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard >> Flat 3 >> PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate >> JID: matthew@infracaninophile.co.uk Kent, CT11 9PW >>=20 >=20 >=20 > =96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96= =96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96 > ---------> Gr=E9gory Bernard Director <--------- > ---------------> www.osnet.eu <--------------- > --> Your provider of OpenSource appliances <-- > =96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96= =96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96 > OSnetOSnetOSnetOSnetOSnetOSnetOSnetOSnetOSnetO >=20 > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to = "freebsd-questions-unsubscribe@freebsd.org" =96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96= =96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96 ---------> Gr=E9gory Bernard Director <--------- ---------------> www.osnet.eu <--------------- --> Your provider of OpenSource appliances <-- =96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96= =96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96=96 OSnetOSnetOSnetOSnetOSnetOSnetOSnetOSnetOSnetO