1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

How to forward your WRTXXX logs to your Linux box

Discussion in 'Cisco/Linksys Wireless Routers' started by sauce, Dec 13, 2005.

  1. sauce

    sauce Network Guru Member

    I used to run LinkLogger on my WinXP box but I was frustrated that everytime I disconnected the machine, I would have to restart the log from my router's config page. My linux machine is up 24/7, plus I like it when my linux box handles this kind of stuff.

    So we begin. I am using Slackware 10.2 w/ 2.6 kernel and DD-WRT as my aftermarket firmware. Adjust your directions accordingly.

    Step 1
    Edit /etc/syslog.conf
    Enter this line:
    Code:
    *192.168.1.1* -/var/log/router
    Change the IP to your router's IP

    Step 2
    You will need to change the way syslog is executed. It needs the -r switch to allow remote logs to be forwarded.
    Edit /etc/rc.d/rc.syslog
    Change this:
    Code:
        echo -n "/usr/sbin/syslogd "
        /usr/sbin/syslogd
    To this:
    Code:
        echo -n "/usr/sbin/syslogd "
        /usr/sbin/syslogd -r
    Note the -r switch in the second code.
    Do "/etc/rc.d/rc.syslog restart" to reload the script

    Step 3 - Router Config
    Administration tab -> Services -> Syslogd

    Enable. Save. Enter the IP of the linux machine. Save.

    Step 4
    Administration tab -> Log
    Enable log
    Log level "High"
    Enable all Log Types (Dropped, Rejected, Accepted)
    Save Settings.

    That's it!
    At a prompt type "tail -f /var/log/messages" to see your router's status
    And type "tail -f /var/log/router" to see your IP traffic

    Now if anyone knows of a nice program to analyze this information please let me know! Whether it be on the linux box, or if I have to sync the file to WinXP to read it!
     

Share This Page