Outputting log information to a linux log host, Network requirements – H3C Technologies H3C SecBlade NetStream Cards User Manual
Page 291

276
# Configure the information output rule: allow log information of ARP and IP modules with severity equal
to or higher than informational to be output to the log host. (Note that the source modules allowed to
output information depend on the device model.)
[SecBlade] info-center source arp channel loghost log level informational state on
[SecBlade] info-center source ip channel loghost log level informational state on
2.
Configure the log host
The following configurations were performed on SunOS 4.0 which has similar configurations to the Unix
operating systems implemented by other vendors.
Step 1: Log in to the log host as a root user.
Step 2: Create a subdirectory named SecBlade under directory /var/log/, and create file info.log under
the SecBlade directory to save logs of SecBlade.
# mkdir /var/log/SecBlade
# touch /var/log/SecBlade/info.log
Step 3: Edit file /etc/syslog.conf and add the following contents.
# SecBlade configuration messages
local4.info /var/log/SecBlade/info.log
In the above configuration, local4 is the name of the logging facility used by the log host to receive logs.
info is the information level. The Unix system will record the log information with severity level equal to or
higher than informational to file /var/log/SecBlade/info.log.
NOTE:
Be aware of the following issues while editing file /etc/syslog.conf:
•
Comments must be on a separate line and begin with the # sign.
•
No redundant spaces are allowed after the file name.
•
The logging facility name and the information level specified in the /etc/syslog.conf file must be
identical to those configured on the device using the info-center loghost and info-center source
commands; otherwise the log information may not be output properly to the log host.
Step 4: After log file info.log is created and file /etc/syslog.conf is modified, you need to issue the
following commands to display the process ID of syslogd, kill the syslogd process and then restart
syslogd using the –r option to make the modified configuration take effect.
# ps -ae | grep syslogd
147
# kill -HUP 147
# syslogd -r &
After the above configurations, the system will be able to record log information into the log file.
Outputting log information to a Linux log host
Network requirements
•
Send log information to a Linux log host with an IP address of 1.2.0.1/16;
•
Log information with severity equal to or higher than informational will be output to the log host;
•
All modules can output log information.