The syslog-ng 3.0 Administrator GuideDocument version: Thirteenth
|
 |
The syslog-ng 3.0 Administrator GuideDocument version: Thirteenth
|
|
The syslog-ng Agent for IBM System i can send the log messages to a syslog or syslog-ng server or relay destination. The server can be a remote server, or it can run in the PASE of the System i. To configure the destination server, start the configuration interface of the syslog-ng Agent (GO SYMAIN) and select > . The following panel is displayed:
Three sample configurations are displayed:
SYSLOG: Send log messages to a syslog-ng server using a standard TCP connection.
SYSLOGD: Send log messages to a syslog-ng server using a standard UDP connection.
SYSLOGSSL: Send log messages to a syslog-ng Premium Edition server using an TLS-encrypted connection.
![[Note]](./note.png) |
Note |
|---|---|
Only TLS encryption is supported, SSL is disabled. |
Use option 2 to change a configuration.
Use option 3 to copy the configuration to a new definition.
Use option 4 to delete a configuration.
Use option 6 to print the configuration details.
When you select option 2 to change the TCP client configuration the following panel is displayed:
The following parameters can be configured
| Attribute | Description |
|---|---|
| Client name | The name of this configuration. |
| Description | Enter a description for this configuration. |
| Status | Enter 1 for Active or 2 for Inactive. When the status is inactive the TCP client application will not be enabled. |
| Auto start client | Enter 1 for Yes to automatically start the TCP client communications when the ALLSYL100 subsystem starts. Enter 2 for No to not automatically start the TCP client. Normally you will want to automatically start the TCP client application when the subsystem starts. |
| Remote host name | Enter the DNS name for the syslog server. Use the IP address field if you do not have a DNS name for the server. |
| IP address | Enter the IP address of the syslog server if you do not have a DNS name. |
| Remote port number | Enter the port number for the syslog server. Consult with your network administrator for the port number. This will be the port number for the source syslog TCP service. |
| Application logging | Enter 1 for Yes to enable application logging. Enter 2 for No to not enable application logging. When this option is enabled detailed log records are written to the file ALLOGA. These log entries are not sent to the syslog server. |
| SSL Application ID | If this client application will use secure TLS communications enter an Application ID. You can use the IBM Digital Certificate Manage to create certificates and associated Application Ids. |
| SSL certification passthrough | Enter 1 for Yes to enable certificate passthrough. Enter 2 for No to not allow certificate passthrough. Enabling certificate passthrough will disable certificate validity checking, but will not allow un-secure connections. |
Table 6.1. Connection parameters of syslog-ng Agent for IBM System i
© 2007-2010 BalaBit IT Security
Please send your comments or documentation bugs to: documentation@balabit.com
