#vi /etc/syslog.conf
¼ÓÈëÒÔÏÂÐУº
local7.* /var/log/firewall/firewall.log
È»ºó°´ÕÕÍøÉÏÇ°È˵ľÑ飬½«/etc/init.d/sysklogdÖеÄ
SYSLOGD=¡±"
ÐÞ¸ÄΪ£º
SYSLOGD=¡±r¡±
ÔÙÖØÆôsyslog£º
/etc/init.d/sysklogd restart
·¢ÏÖ514¶Ë¿Úû´ò¿ª¡£
ÔÙÐ޸ģº
#vi /etc/default/syslogd
SYSLOGD=¡±"
ÐÞ¸ÄΪ£º
SYSLOGD=¡±-r¡±
#tail /var/log/messages
³öÏÖ£º
Jan 5 00:35:05 dingl-ubuntu syslogd 1.4.1#21ubuntu3: restart (remote reception).
˵Ã÷syslog¿É½ÓÊÕÍⲿÈÕÖ¾ÁË¡£
ÅäÖ÷À»ðǽ¿É´Ó514¶Ë¿Ú½ÓÊÕÍⲿÈÕÖ¾£º
/sbin/iptables -A INPUT -p udp -dport 514 -j ACCEPT
ÖØÆô·À»ðǽ¡£
ÔÚÔ¶³ÌÉ豸ÉÏÉèÖý«ÈÕÖ¾·¢Ë͵½syslog·þÎñÆ÷¡£
#tail /var/log/firewall/firewall.log
³É¹¦·¢ÏÖÈÕÖ¾£¬ÅäÖóɹ¦¡£
