stackoom
  简体   繁体   中英

Intercepting Syslog log Traffic to a Custom UDP Server

 原文  2012-10-03 14:17:21       c/ logging/ udp/ syslog

Question

I'm trying to intercept application specific syslog log traffic from a custom UDP server in ubuntu. For testing purposes, I stopped the default syslogd daemon running in port 514 and configured a UDP server to listen to UDP traffic on port 514. I have faced the following questions in doing so:

  1. The remote logging feature has to be enabled in /etc/default/syslogd file using SYSLOGD="-r". However, since I stopped the syslogd daemon and am running my own UDP server on port 514, is there any other way to enable remote logging (programmatically, etc.) without using syslog.conf file so that log traffic is sent to the port 514?

  2. Is there a way to direct syslog log traffic to another port with the default port 514 (traffic must be sent to both ports)? If this is the case, I can easily run a custom UDP daemon in the second port and intercept log traffic.

Thanks.

1 answers

solution1
 1  2012-10-11 22:06:24

You can't have two daemons listening on the same port. Set up your UDP test server (eg netcat) to listen on another port (eg 1514) and configure your ubuntu server to send logs to this port.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question syslog.conf configuration to log only into a custom log file, Syslog custom priorities Include LEVEL into SysLog log file How to generate constant UDP traffic? using syslog to log to my own log file? write custom timestamp into syslog using syslog.h syslog not logging my program log entries Unable to log into docker container syslog file C Syslog.h not writing the log How to use syslog to log some message on terminal?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM