1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Logging all traffic to remote syslog

Discussion in 'Other Firmware Projects' started by killebrc, Oct 20, 2004.

  1. killebrc

    killebrc Network Guru Member

    I recently installed WIFIbox Release Version: 2.02.2.6.tpr 02/10/2004 to my WRT54G and I'm trying to get remote logging working to log all iptable traffic to a remote PC.

    I installed an init script on the Administration->Diagnostic page

    # START SYSLOGD TO 192.168.10.222
    sleep 10
    syslogd -R 192.168.10.222

    I also added some iptable lines to the init script to try and force iptables to log info to syslog. All i am getting form my syslog though is messages like:

    <31>dnsmasq[73]: adding: xxxrtr Tue Oct 19 19:25:04 2004

    What am I doing wrong? How can I get iptables traffic to syslog pc....

    Thanks in advance
     
  2. killebrc

    killebrc Network Guru Member

  3. beerygaz

    beerygaz Network Guru Member

    killebrc, now that you're getting syslog messages from iptables, are you using a script or application to parse them? I want to use these logs to build a map of protocols and destinations from my router, but rather than re-invent the wheel, I'm hoping there's something out there already?

    I'm guessing you're getting the [src=x.x.x.x, dst=x.x.x.x, proto=x.x.x.x, etc] type messages?
     

Share This Page