- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- Re: about local0-7 in syslog.conf
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО04-15-2008 06:28 PM
тАО04-15-2008 06:28 PM
I am a new guy, who first use this forum. my customer what to know what local0-local7 are in syslog.conf, and what services they represent.
I tried to find the answer in many manuals, but can not get them explicitly. I have no idea. It is too complicated to me.
Can you give me a clear explaination for them or provide me some documents about that?
Thanks very much!
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО04-15-2008 11:50 PM
тАО04-15-2008 11:50 PM
SolutionMany syslog-using applications can be configured to use any syslog "facility" identifier, including any of the local0-local7 group. If an application uses syslog, the documentation of the application should explain how to do this.
If you need to get the syslog messages of one particular program into a separate logfile, you can configure that program to use one of the "local" facility identifiers, and then set up a separate logfile for that facility in /etc/syslog.conf file.
For example: you might have a program which normally logs using the "daemon" facility identifier. If that program has a problem, you wish to get all its syslog messages, including the "debug" level messages which you normally ignore. But if you specify "daemon.debug" in your syslog configuration, you'll get the debug information of _all_ programs using the "daemon" facility, which is not what you wanted. It will make your log files bigger than necessary and makes it more difficult to find whatever you're looking for in the logs.
Instead, you set this particular program to use one of the unused "local" facility identifiers (local0, if nothing else has been set up). Then you can specify "local0.debug" in your syslog configuration to direct the messages of this particular program (only!) to a separate logfile.
MK
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО04-16-2008 12:41 AM
тАО04-16-2008 12:41 AM
Re: about local0-7 in syslog.conf
yestoday my customer asked me help him seperate the ftp logs from syslog. I check some manuals, and find the solution: I added to entries in syslog.conf:
*.info;mail.none,local5.none /var/adm/syslog/syslog.log
local5.info;mail.none /var/adm/ftplog
then restart syslogd. it worked. all logs of FTP are written in /var/adm/ftplog, instead of in syslog.
In this example I use local5. I think it is obvious that local5 relate to FTP service in syslog.conf. So I think local0, local1, 2, 3, 4, 6, and 7 should also relate to some other services in /etc/syslog.conf. Do you think so? If not, why we must use local5 in syslog.conf when we want to redirect FTP log to other file rather than syslog?
Thanks for you great support. Waiting for your new reply.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО04-16-2008 10:09 AM
тАО04-16-2008 10:09 AM
Re: about local0-7 in syslog.conf
what made you conclude the local5 was related to FTP service? I don't see the connection (nothing new there) but am willing to be enlightened.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО05-08-2008 01:44 PM
тАО05-08-2008 01:44 PM
Re: about local0-7 in syslog.conf
For example, with wu-ftp on my system here is how it is defined:
config.h:
#define FACILITY LOG_LOCAL5
Otherwise the default log facility is:
FACILITY LOG_DAEMON
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО05-08-2008 04:42 PM
тАО05-08-2008 04:42 PM
Re: about local0-7 in syslog.conf
The attached script will decode the hex digits for you so you can see what each message used when it was received by syslogd. Note that your syslog file must have the digits stored first.
Bill Hassell, sysadmin