|
Firewall Wizards
mailing list archives
Re: syslog and network management
From: ArkanoiD <ark () eltex net>
Date: Thu, 28 Feb 2008 01:30:09 -0700
Hmm, did you try tcp transport (if your router does support it)?
It might be better..
On Tue, Feb 26, 2008 at 02:12:51PM -0800, david () lang hm wrote:
We were logging 6 PIXen as well as many switches and routers (and a
much lesser level). We never "noticed" a great loss of messages... I
guess I can assume you did, and maybe I could learn from how you did!
:)
What daemon do you use?
we tried to use syslog-ng to receive activity from our border router and
write a copy locally (in large chunks) and relay the logs to another
syslog server inside.
we noticed a LOT of missing logs, when we changed to the default debian
syslogd we were able to handle an order of magnatude more logs without any
sign of missing logs (from around 100/sec to >1000/sec)
_______________________________________________
firewall-wizards mailing list
firewall-wizards () listserv icsalabs com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
 By Date 
By Thread
Current thread:
|
Intro
