System Administration
cancel
Showing results for 
Search instead for 
Did you mean: 

Syslog sending to remote host doesnt contain IP address or Hostname

 
Sinto1
Occasional Collector

Syslog sending to remote host doesnt contain IP address or Hostname

I configure Syslog.conf to send the syslogs to remote server. But the remote server receiving the syslogs doesnt contain neither Hostname nor IP address. But the same time, in the server syslog.log file has hostname.

Please help to add either hostname or ip address in the syslog which sending to remote host,

 

syslog.conf configuraion pertaining to remote server

*.emerg;*.alert;*.crit;*.err;*.warning;*.notice;*.info;*.debug  @REMOTEHOSTNAME

 

LOG SAMPLE FROM REMOTE SYSLOG SERVER.

Mar 20 16:01:53 sshd[2732]: Received disconnect from 192.168.1.XX: 11: The user disconnected the application
Mar 20 16:01:53 sshd[2732]: pam_setcred: error Permission denied
Mar 20 16:03:27 sshd[2887]: Did not receive identification string from 192.168.1.XX
Mar 20 16:03:27 sshd[2888]: SSH: Server;Ltype: Version;Remote: 192.168.1.XX-64460;Protocol: 2.0;Client: maverick_legacy_1.6.24
Mar 20 16:03:27 sshd[2888]: SSH: Server;Ltype: Kex;Remote: 192.168.1.XX-64460;Enc: aes128-ctr;MAC: hmac-sha2-256;Comp: none
Mar 20 16:03:27 sshd[2888]: SSH: Server;Ltype: Authname;Remote: 192.168.1.XX-64460;Name: monitor
Mar 20 16:03:28 sshd[2888]: Accepted keyboard-interactive/pam for monitor from 192.168.1.XX port 64460 ssh2

4 REPLIES 4
Lucky_Ali
HPE Pro

Re: Syslog sending to remote host doesnt contain IP address or Hostname

Hello , 

What is the OS release  on source and remote server ? 

 

 

 


Accept or Kudo
Highlighted
Sinto1
Occasional Collector

Re: Syslog sending to remote host doesnt contain IP address or Hostname

The source is HP Unix.

Syslog server installed on Windows Operating System. i have try to capture the network packet using wireshark, in there also syslog showing without hostname/IP address

 

Lucky_Ali
HPE Pro

Re: Syslog sending to remote host doesnt contain IP address or Hostname

Hello, 

Well , I have both source and remote as HPUX server and i did not find any issues ?

this could be because of HPUX would not be supported with Windows server as remote host.

 


Accept or Kudo
Sinto1
Occasional Collector

Re: Syslog sending to remote host doesnt contain IP address or Hostname

Yes, I also tried to HP UX as remote OS and found that IP address and HOSTNAME is appearing in the syslog.


P Please save the Tree

Think! Do you really need to print this email? Be Eco-friendly, Go Green..

Important Note: This e-mail may contain trade secrets or privileged, undisclosed or otherwise confidential information. If you have received this e-mail in error, you are hereby notified that any review, copying or distribution of it is strictly prohibited. Please inform us immediately and destroy the original transmittal. Thank you for your cooperation.