Install Rsyslog on Ubuntu 20.04

-

 

Install Rsyslog on Ubuntu 20.04

Rsyslog is the default syslogd on Debian systems and is usually installed on Ubuntu 20.04 by default.

You can verify this by checking the version of installed rsyslog.

apt list -a rsyslog

 

root@SaadAtaullah:~# apt list -a rsyslog

Listing... Done

rsyslog/focal-updates,now 8.2001.0-1ubuntu1.1 amd64 [installed,automatic]

rsyslog/focal 8.2001.0-1ubuntu1 amd64

                 If for any reasons it is not installed, run the command below to install it.

 

apt update
apt install rsyslog -y

Once the installation is done, start and enable the rsyslog service.

systemctl enable --now rsyslog

 

NOW

Setup Rsyslog Server on Ubuntu 20.04

Now that rsyslog is installed and running, you need to configure it to run in server mode. As stated above, rsyslog can be configured as client to sent logs to a central logging server or a server to receive and store logs from other systems.

In this guide, we setup Rsyslog as a server on an Ubuntu 20.04 box.

Open the ryslog configuration file for editing;

Nano /etc/rsyslog.conf
 
Define Rsyslog Server Protocol and Port

To begin with, define the protocol and port you want to receive logs on.

You can choose to use UDP or TCP and any port of your choice.

By default UDP syslog is received on port 514.

 

Enable UDP syslog reception:

 

Within the /etc/rsyslog.conf configuration file, uncomment the lines for UDP syslog reception in the MODULES section as shown below;

 

#################

#### MODULES ####

#################

# provides UDP syslog reception

module(load="imudp")

input(type="imudp" port="514")

 

# provides TCP syslog reception

#module(load="imtcp")

#input(type="imtcp" port="514")

 

Now we enable syslog in librenms

https://docs.librenms.org/Extensions/Syslog/

nano  /etc/rsyslog.d/libre.conf

copy paste below script

# Feed syslog messages to librenms

module(load="omprog")

 

template(name="librenms"

        type="string"

        string= "%FROMHOST-ip%||%syslogfacility%||%syslogpriority%||%syslogseverity%||%syslogtag%||%$year%-%$month%-%$day% %timegenerated:8:25%||%msg%||%programname%\n")

        action(type="omprog"

        binary="/opt/librenms/syslog.php"

        template="librenms")

 

& stop

 

Add the following to your LibreNMS under nano /opt/librenms/config.php file to enable the Syslog extension:

$config['enable_syslog'] = 1;

Syslog Clean Up

Can be set inside of config.php

$config['syslog_purge'] = 30;

 

Let troubleshoot rsyslog

sudo netstat -taupn | grep syslog

nano /var/log/syslog

for more settings to enable email settings see my video on youtube

https://youtu.be/J7ZBs2ut-Ho

Gmail SMTP setup settings:

  • SMTP username: Your Gmail address
  • SMTP password: Your Gmail password
  • SMTP server address: smtp.gmail.com
  • Gmail SMTP port (TLS): 587
  • SMTP port (SSL): 465
  • SMTP TLS/SSL required: yes

 

 

 

Comments

  1. AnonymousJanuary 27, 2022 at 11:18 AM

    Is Baccarat Worth Your Time? | Free Tips - FBCasino
    Are you interested in learning 제왕 카지노 more about playing baccarat in US? 바카라사이트 Here's our comprehensive list of baccarat tables in the United 메리트 카지노 고객센터 States.

    ReplyDelete

Post a Comment

Popular posts from this blog

Installing NFSEN & NFDUMP on Ubuntu and Next integrate with LibreNMS

-
  librenms@librenms:~$ lsb_release -a No LSB modules are available. Distributor ID: Ubuntu Description:     Ubuntu 20.04.2 LTS Release:         20.04 Codename:        focal Project Link: http://nfsen.sourceforge.net/ http://nfdump.sourceforge.net/ https://github.com/phaag/nfdump https://www.first.org/resources/papers/conference2006/haag-peter-papers.pdf sudo add-apt-repository universe    FOR OLD ubuntu versions 16,18 Installation Use the sudo user sudo -i Update ubuntu: apt-get update apt autoremove   Create and navidate to a new folder: mkdir ~/nfsen && cd ~/nfsen   or   mkdir /var/nfsen && cd / var /nfsen   Download the required files: wget https://bit.ly/2NpMHqV      >>> NfSend wget https://github.com/phaag/nfdump/archive/v1.6.17.tar.gz     >>>NfDump Extract the files: tar zxfv 2NpMHqV tar xzfv v1.6.17.tar.gz Install Dependencies apt install make gcc flex rrdtool librrd-dev libpcap
Read more

IP Core Networks | Your Education, Your Choice

-
Image
    Our Youtube Channel Name : IP Core Networks  Channel link: https://www.youtube.com/channel/UCbkH41NcPM3od4Xkij0M7zw Email address:cciepearl@gmail.com WhatsApp:+92-345-7770727 Channel Description:  IP CORE NETWORKS is a Premium Cisco Consulting provider of Cisco Products, Solutions, Included MikroTik, MicroSoft Server,Firewalls Training, and Professional Services/Supports for small, medium, and large-sized businesses. We are a Cisco Premier Certified Partner founded by a Cisco CCIE architect and consultant with over 8 years of production experience in a wide range of network environments. Our Company consists of CCNA, CCNP, and CCIE consultants with real-world experience. AND our channel provides you all Cisco Training videos for CCNA, CCNP, CCIE,MikroTik and others Cisco Certifications as well as Networking-related troubleshooting videos. WhatsApp: +92-345-7770727 Elastic Systems Pvt Ltd.  http://www.elastic-home.com  
Read more

How to Install & Integrate Oxidized Into LibreNMS

-
  How to Install & Integrate Oxidized Into LibreNMS Project Links: https://docs.librenms.org/Extensions/Oxidized/ https://github.com/ytti/oxidized https://www.rubydoc.info/gems/oxidized/0.7.2 https://github.com/net-ssh/net-ssh Oxidized is a great tool for automating backups of device configs like ASA Firewalls, IOS routers, and all types of switches! I chose Oxidized because it very easy integrates into Librenms. The instructions for how to integrate oxidized into LibreNMS are below: sudo -i login as root user   to check Ubuntu OS version   lsb_release -a Must be Update your ubuntu/LibreNMS apt update && apt autoremove su - librenms git pull ./daily.sh ./validate.php     Installation : go to the working directory login as a root user Debian and Ubuntu On Ubuntu, begin by enabling the universe repository (required for libssh2-1-dev): add-apt-repository universe   I nstall the dependencies: apt-get install ruby ruby-dev
Read more