Manualshelf

R3721-F3210-F3171-HP High-End Firewalls System Management and Maintenance Configuration Guide-6PW101

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module
81828384858687888990
74
NOTE:
Be aware of the following issues while editing the file /etc/syslog.conf:
Comments must be on a separate line and must begin with a pound (#) sign.
No redundant spaces are allowed after the file name.
The logging facility name and the information level specified in the /etc/syslog.conf file must be
identical to those configured on the Firewall using the info-center loghost and info-center source
commands. Otherwise the log information may not be output properly to the log host.
d. Display the process ID of syslogd, kill the syslogd process, and restart syslogd using the -r
option to make the modified configuration take effect.
# ps -ae | grep syslogd
147
# kill -9 147
# syslogd -r &
Make sure that the syslogd process is started with the -r option on a Linux log host.
After the above configurations, the system will be able to record log information into the log file.
Outputting log information to the console
Network requirements
Configure the Firewall to send ARP and IP log information that has a severity level of at least Informational
to the console.
Figure 28 Network diagram
Configuration procedure
# Enable the information center.
<Firewall> system-view
[Firewall] info-center enable
# Use channel console to output log information to the console (optional, console by default).
[Firewall] info-center console channel console
# Disable the output of log, trap, and debugging information of all modules on channel console.
[Firewall] info-center source default channel console debug state off log state off trap
state off
To avoid outputting unnecessary information, disable the output of log, trap, and debugging information
of all modules on the specified channel (console in this example), and then configure the output rule as
needed.
# Configure an output rule to output to the console ARP and IP log information that has a severity level
of at least informational. (Note that the source modules allowed to output information depend on the
Firewall model.)
[Firewall] info-center source arp channel console log level informational state on
[Firewall] info-center source ip channel console log level informational state on
PC
Console
Firewall