To determine what machine the log host is, look
in /etc/hosts
and
/etc/inet/ipnodes
and look for lines like
andrews.EECS.Berkeley.EDU:root: %C2> grep loghost /etc/hosts /etc/inet/ipnodes /etc/hosts:128.32.48.218 bennett.eecs.berkeley.edu bennett loghost mailhost /etc/inet/ipnodes:128.32.48.218 bennett.eecs.berkeley.edu bennett loghost mailhost(If we were running yp, we would do
ypcat hosts | grep loghost
)
To test out syslog, use the logger program:
logger -p daemon.info testingshould send a message to the syslog facility, which usually forwards the message to the loghost, which, as of 3/02, is doppler. The loghost will then handled the message an append it to
/var/log/authlog
.
/etc/syslogd.conf
as the following (note that these are two columns
separated by tabs)
auth,daemon.info ifdef(`LOGHOST', /var/log/authlog, @loghost)
See also Process Accounting