Syslog issues #9536
Syslog issues
#9536
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
Uh oh!
There was an error while loading. Please reload this page.
-
Hello all,
On the latest distro of SO. I am able to get syslog to work from one security appliance and can see thousands of logs already. However, I have a router that is giving me trouble. Syslog verbosity has been set to notice level. I have Wireshark running on the host machine of SO and I can see incoming UDP syslog messages with the SO IP as the dst, etc. However, I have only found two verified logs in Elasticsearch. I have restarted SO and the host machine already. I also ran netstat -su on the SO VM and I have 0 packet receive or buffer errors.
What would be the reason behind this?
Edit: Solution found was changing the primary virtual NIC for SO in the hypervisor to a non-bridged hardware NIC.
Beta Was this translation helpful? Give feedback.
All reactions