Forwarding syslog to a remote central server on Rocky Linux 8
This KB describes how to forward syslog traffic on Rocky Linux 8 ( Swarm Cluster Services )
If you want to forward syslog traffic to a remote syslog server please execute the following steps:
in /etc/rsyslog.conf just uncomment the last line that says
#*.* @remote-host:514 replace remote-host with your remote centralized logging server ip/hostname
if its TCP then its @@ if its UDP syslog then its single @
Not everything needs to be forwarded, it depends on what you need, the following are the syslog facilities we currently map to on our SCS ( Swarm Cluster Services )
local0.* /var/log/datacore/elasticsearch.log
local1.* /var/log/datacore/haproxy.log
local3.* /var/log/datacore/platform.log
local4.* /var/log/datacore/cloudgateway_audit.log
local5.* /var/log/datacore/cloudgateway_server.log
local6.* /var/log/datacore/castor.log
Related content
© DataCore Software Corporation. · https://www.datacore.com · All rights reserved.