VPN device log syslog To BSD Server

The VPN device logs syslog To the BSD server-Linux Enterprise Application-Linux server application information. The following is a detailed description. 1. Set the syslog parameters of the VPN device. I use this VPN Device of Beijing Power. Other network devices are not very different.

2. After configuring the VPN, tcpdump on the BSD server will show the packets from the VPN device accessing port 514. Modify the syslog. conf file:

Add
Local5. */var/log/vpn. log (note that tabs are used to separate logs)
After saving, create the vpn. log File and restart the syslogd service.

3. vpn. log does not accept logs. Because syslogd_flags = "-s" in the rc. conf file"

-S indicates Operate in secure mode. Do not log messages from remote
Machines. If specified twice, no network socket will be opened
At all, which also disables logging to remote machines.

Therefore, logs cannot be received.

Later, it was changed to syslogd_flags = "-u" vpn. log to receive logs. However, messages cannot receive any log messages due to the modified priority.

Finally, make sure that syslogd_flags = "" is correct. messages can still receive logs normally, and the VPN log information can also be written to the vpn. log File. However, this
There is a problem, because the sentence in the syslog. conf file
*. Notice; local5.none; authpriv. none; kern. debug; lpr.info; mail. crit; news. err/var/log/messages
The notice-level logs that cause the VPN are still written into messages. To completely separate the two logs, you can modify the following statement:
*. Notice; local5.none; authpriv. none; kern. debug; lpr.info; mail. crit; news. err ;! Local5. */var/log/messages

Disable the source information at the none level.
After the restart, the log is completely written into vpn. log.