I hope this is the proper forum for this sort of question. Please let me know if it is not. I have read up on the basics of using syslog and logrotate to log and rotate my system logs. I have also read the basics of how to make the Cisco PIX send logging information to my syslog server. When turning this on from the PIX, it immediately starts logging to the syslog server (I've already enabled the remote logging ability for syslog) but it logs everything to /var/log/messages. I had entered the following line to my /etc/syslog.conf file as well. local4.* /var/log/pix Eventually I found out that things were now being logged twice, once to my pix file above and once to /var/log/messages. My problem/question is that I'd like to have the PIX logs in a separate file, one that gets rotated daily at midnight. In addition to that, I'd like it to append the date as the suffix of the log's filename, such as pix20020815. I would also prefer that the logs were automatically deleted after say, 3 months, but that is the least of my worries right now. We may just stick with a manual deletion anyway. If anyone can give me details on this, or if anyone else has already set this up for their PIX, I'd greatly appreciate some examples, either online or offline. By the way, I'm running Red Hat 7.3 for this. _______________________________________________ LogAnalysis mailing list LogAnalysisat_private http://lists.shmoo.com/mailman/listinfo/loganalysis
This archive was generated by hypermail 2b30 : Thu Aug 29 2002 - 09:26:08 PDT