The Linux logs are not showing in the dashboard

[gimeb]

I have installed Log server and have successfully configured it to receive Windows system logs via nxlog. However, the Linux logs are not showing after executing of the following commands. I am running Red Hat Enterprise Linux Server release 6.6. Please advise.

curl -s -O http://136.133.236.12/nagioslogserver/s ... p-linux.sh
bash setup-linux.sh -s 136.133.236.12 -p 5544

[root@x3musaw80 log]# curl -s -O http://136.133.236.12/nagioslogserver/s ... p-linux.sh
[root@x3musaw80 log]# bash setup-linux.sh -s 136.133.236.12 -p 5544
Detected rsyslog 5.8.10
Detected rsyslog work directory /var/lib/rsyslog
Destination Log Server: 136.133.236.12:5544
Creating /etc/rsyslog.d/99-nagioslogserver.conf...
==============================! WARNING !====================================
SELinux is enforcing. This may prevent rsyslog from forwarding messages.
If log messages do not reach Log Server from this host, ensure SELInux is
configured to allow rsyslog forwarding.
=============================================================================
rsyslog configuration check passed.
Restarting rsyslog service with 'service'...
Shutting down system logger: [ OK ]
Starting system logger: [ OK ]
Okay.
rsyslog is running with the new configuration.
Visit your Nagios Log Server dashboard to verify that logs are being received.

[rkennedy]

Code: Select all

SELinux is enforcing. This may prevent rsyslog from forwarding messages.
If log messages do not reach Log Server from this host, ensure SELInux is
configured to allow rsyslog forwarding.

You'll need to allow rsyslog to send with SELinux enabled, or disable selinux. Either one will work.

[gimeb]

Please let me know how to properly ensure SELInux is configured to allow rsyslog forwarding.

[rkennedy]

We do not have official instructions on this, but you should be able to use /var/log/audit/audit.log with audit2allow. See this link for more information -
https://access.redhat.com/documentation ... allow.html