Date: Sat, 14 Apr 2007 01:34:22 -0400 From: web@3dresearch.com To: des@des.no (Dag-Erling =?iso-8859-1?Q?Sm=F8rgrav?= ) Cc: freebsd-questions@freebsd.org Subject: Re: Syslog not logging remote host Message-ID: <6.2.1.2.0.20070414011215.03712008@imap.telissant.com> In-Reply-To: <861wingb9a.fsf@dwp.des.no> References: <f3FBuLwP.1176475224.6331340.janos@imap.3dresearch.com> <86irc0kqhb.fsf@dwp.des.no> <6.2.1.2.0.20070413170506.04088680@imap.telissant.com> <861wingb9a.fsf@dwp.des.no>
next in thread | previous in thread | raw e-mail | index | archive | help
At 06:28 PM 4/13/2007, you wrote: >web@3dresearch.com writes: > > Dag-Erling Sm=F8rgrav <des@des.no> writes: > > > If 10.61.70.100 runs FreeBSD, syslogd_flags defaults to -s, which > > > disables the listening socket. > > Yes, 10.61.70.100 is running 5.5-STABLE, and I have in /etc/rc.conf= there: > > > > syslogd_flags=3D"-a 10.61.70.1/32" > >Check with tcpdump? > >DES >-- >Dag-Erling Sm=F8rgrav - des@des.no This is what I got on 10.61.70.100 (gww.floco.com is 10.61.70.1): # tcpdump -r capture1 reading from file capture1, link-type EN10MB (Ethernet) 00:58:07.203800 IP gww.floco.com.syslog > 10.61.70.100.syslog: UDP, length:= 126 00:58:33.295297 IP gww.floco.com.syslog > 10.61.70.100.syslog: UDP, length:= 44 00:58:33.340779 IP gww.floco.com.syslog > 10.61.70.100.syslog: UDP, length:= 49 00:59:21.436782 IP gww.floco.com.syslog > 10.61.70.100.syslog: UDP, length:= 55 00:59:21.438125 IP gww.floco.com.syslog > 10.61.70.100.syslog: UDP, length:= 71 00:59:21.439305 IP gww.floco.com.syslog > 10.61.70.100.syslog: UDP, length:= 99 00:59:21.440458 IP gww.floco.com.syslog > 10.61.70.100.syslog: UDP, length:= 92 ...and more of the same. -- Janos Dohanics
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?6.2.1.2.0.20070414011215.03712008>