Nagios Support Forum

Support for Nagios products and services
https://support.nagios.com/forum/

Adding Solaris 11 servers

https://support.nagios.com/forum/viewtopic.php?t=53841

Page 1 of 1

Adding Solaris 11 servers

Posted: Mon May 13, 2019 8:27 am
by SamH
Hi all,

I'm having some trouble add my Solaris 11 servers to the log server.

Using syslog on the default port 514. I've edited syslog.conf in /etc/ and added

Code: Select all

*.err;kern.debug;daemon.notice;mail.crit                @179.54.211.192
Used svcadm restart svc:/system/system-log:default to restart the service.

On the log server, I've gone into configure/instance/global and added

Code: Select all

tcp {
    port => 514
    type => syslog
}
udp {
    port => 514
    type => syslog
}
in the inputs. Saved and "apply configuration". All came back with a green tick. Port 514 has been opened on the firewall for both UDP and TCp but non of the logs are coming through.

Both Solaris server and log server can ping each other, however I can not telnet on for 514 from the Solaris server, but can on 6514.
Any one able to help?

Re: Adding Solaris 11 servers

Posted: Mon May 13, 2019 1:15 pm
by 455157
Hi SamH,

Since you're using privileged port 514, have you had a chance to take one of the steps outlined here:

https://support.nagios.com/kb/article/n ... s-302.html

Re: Adding Solaris 11 servers

Posted: Mon May 13, 2019 3:31 pm
by cdienger
@samH, check out the document that @455157 pointed out. The document covers the most likely cause of the behavior you're describing.

Re: Adding Solaris 11 servers

Posted: Wed May 15, 2019 7:20 am
by SamH
Thank you both, Got through that doc and post back if there are any problems

Re: Adding Solaris 11 servers

Posted: Wed May 15, 2019 3:13 pm
by cdienger
Sounds good!

Re: Adding Solaris 11 servers

Posted: Wed May 22, 2019 6:12 am
by SamH
Just through I'd update this thread.

After reading with the doc @455157 posted (thanks) I decided not to go down this road, due to not being able to have servers using ports below the 1000 range showing in the main dashboard count. Reporting would have just been a headache.

So after playing around with the syslog.conf file I got it to send out on 5544:

Code: Select all

*.err;kern.debug;daemon.notice;mail.crit                     @172.24.228.92:5544
*.err;kern.notice;auth.notice                                        @172.24.228.92:5544
*.err;kern.debug;daemon.notice;auth.none;mail.crit     @172.24.228.92:5544
*.err;kern.debug;daemon.notice;mail.crit                      @172.24.228.92:5544
Don't forget to restart the service with:

Code: Select all

svcadm restart system-log:default

Re: Adding Solaris 11 servers

Posted: Wed May 22, 2019 9:48 am
by cdienger
Thanks for the follow up! Were there any additional questions or can we lock this one up?

Re: Adding Solaris 11 servers

Posted: Wed May 29, 2019 5:01 am
by SamH
No probz. Yea lock it up

Re: Adding Solaris 11 servers

Posted: Wed May 29, 2019 6:49 am
by scottwilkerson
SamH wrote:No probz. Yea lock it up
Great!

Locking
All times are UTC-05:00
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited