Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Remote SYSLOG server using hostname…

    General pfSense Questions
    3
    3
    1495
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      Sup3rior last edited by

      Is there any way of having pfSense in version 2.0-RELEASE use at hostname to locate the remote SYSLOG server?

      Am using a redundant SYSLOG setup where there are more than one server able to proces the request and log it, but this creates duplicate entries at the moment because I have added all IP addresses in the SYSLOG settings on the pfSense.
      However, I wouldn't want to loose any logging because one of the SYSLOG servers go down but the duplicate entries are a bit annoying :)

      Regards,
      Anders

      1 Reply Last reply Reply Quote 0
      • jimp
        jimp Rebel Alliance Developer Netgate last edited by

        Even if you could enter a hostname there I believe syslogd only resolves it once when syslog is started, so if you rely on the DNS result changing over time, that wouldn't help you, not unless you somehow also made syslogd restart periodically.

        Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

        Need help fast? Netgate Global Support!

        Do not Chat/PM for help!

        1 Reply Last reply Reply Quote 0
        • B
          biggsy last edited by

          The paid version of Kiwi syslog daemon can forward log records to another syslog server but I don't know if it can do that at the same time as logging the messages itself.   You might need to have two paid copies of Kiwi as well.

          EDIT:  Having read the whole of the link below, I see that you don't need the paid version unless you want to spoof the original IP address.

          http://www.kiwisyslog.com/help/syslog/index.html?action_forward_to_another_host.htm

          ~~I don't have the full version but you get 30 days of full function with a trial copy.  ~~It does only run on Windows though.

          1 Reply Last reply Reply Quote 0
          • First post
            Last post