From owner-freebsd-net@FreeBSD.ORG  Tue Feb  3 07:54:37 2004
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 88ED816A4CE
	for <freebsd-net@freebsd.org>; Tue,  3 Feb 2004 07:54:37 -0800 (PST)
Received: from arginine.spc.org (arginine.spc.org [195.206.69.236])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 2F3FE43D31
	for <freebsd-net@freebsd.org>; Tue,  3 Feb 2004 07:54:34 -0800 (PST)
	(envelope-from bms@spc.org)
Received: from localhost (localhost [127.0.0.1])
	by arginine.spc.org (Postfix) with ESMTP
	id 83A3665435; Tue,  3 Feb 2004 15:54:32 +0000 (GMT)
Received: from arginine.spc.org ([127.0.0.1])
 by localhost (arginine.spc.org [127.0.0.1]) (amavisd-new, port 10024)
 with LMTP id 40994-02-2; Tue,  3 Feb 2004 15:54:32 +0000 (GMT)
Received: from saboteur.dek.spc.org (82-147-17-88.dsl.uk.rapidplay.com
	[82.147.17.88])
	(using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))
	(No client certificate requested)
	by arginine.spc.org (Postfix) with ESMTP
	id B159A65434; Tue,  3 Feb 2004 15:54:31 +0000 (GMT)
Received: by saboteur.dek.spc.org (Postfix, from userid 1001)
	id EA00E40; Tue,  3 Feb 2004 15:54:30 +0000 (GMT)
Date: Tue, 3 Feb 2004 15:54:30 +0000
From: Bruce M Simpson <bms@spc.org>
To: Edward Butler <Edward.Butler@trinite.co.uk>
Message-ID: <20040203155430.GA2447@saboteur.dek.spc.org>
Mail-Followup-To: Edward Butler <Edward.Butler@trinite.co.uk>,
	freebsd-net@freebsd.org
References: <4A22D4DACF836546ACB71760692F5B4D01044DA6@accenthouseexch1.accenthouse.co.uk>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <4A22D4DACF836546ACB71760692F5B4D01044DA6@accenthouseexch1.accenthouse.co.uk>
cc: freebsd-net@freebsd.org
Subject: Re: Obtaining Syslog message from a Cisco Router
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 03 Feb 2004 15:54:37 -0000

On Tue, Feb 03, 2004 at 03:38:19PM -0000, Edward Butler wrote:
> I am looking to dump the log files from various Cisco routers on to one
> of various FreeBSD boxes we are running ( mainly FreeBSD 4.4 ) once the
> logs have been dumped to then rotate these in a similar way that other
> system logs files are rotated - dns, www and mail etc...
> 
> My question is - do I need to compile a specific syslog collector or
> will syslog on its own be able to handle these messages? Also how can I
> reconfigure logrotate to include these log files?

1) Tell Cisco routers to use a specific facility/priority for their messages.
2) Tell syslog.conf to place the messages using this facility/priority into
their own log file.
3) Tell newsyslog.conf to rotate these logs according to the desired policy.

No need to install logrotate. newsyslog is the default FreeBSD log file
rotation tool.

BMS