[prev in list] [next in list] [prev in thread] [next in thread]
List: syslog-ng
Subject: Re: [syslog-ng] Install Syslog-ng OSE into Virtual Machine - RHEL OS
From: "Klimek, Bryan J." <bklimek () mayo ! edu>
Date: 2019-10-17 19:55:46
Message-ID: 771925$cjjrj8 () ironport10 ! mayo ! edu
[Download RAW message or body]
[Attachment #2 (multipart/alternative)]
I had issues with UDP packet drops. You can see my resolution here:
https://lists.balabit.hu/pipermail/syslog-ng/2019-July/025364.html
Bryan
From: syslog-ng [mailto:syslog-ng-bounces@lists.balabit.hu] On Behalf Of Wi=
lliam Luiz Ribeiro Vasconcelos Da Silva
Sent: Thursday, October 17, 2019 2:02 PM
To: Syslog-ng users' and developers' mailing list
Subject: [EXTERNAL] Re: [syslog-ng] Install Syslog-ng OSE into Virtual Mach=
ine - RHEL OS
Hi L=E1szl=F3,
What is the kernel parameters for heavy UDP traffic? Who to change it?
________________________________
De: syslog-ng <syslog-ng-bounces@lists.balabit.hu> em nome de L=E1szl=F3 P=
=E1l <vlad@vlad.hu>
Enviado: quinta-feira, 17 de outubro de 2019 15:57
Para: Syslog-ng users' and developers' mailing list <syslog-ng@lists.balabi=
t.hu>
Assunto: Re: [syslog-ng] Install Syslog-ng OSE into Virtual Machine - RHEL =
OS
RHEL and derivatives uses rsyslog by default, so if you plan to use syslog-=
ng instead, you should remove rsyslog first. Other configs are highly depen=
ds on your usecase (like adjust kernel parameters for heavy UDP traffic and=
so on). Also quite generic people are facing with issues with selinux and =
firewalld but obviously there are solutions for any of these (other than tu=
rning off these services :))
L:
On 2019. Oct 17., at 20:45, William Luiz Ribeiro Vasconcelos Da Silva <wsil=
va_ericsson@timbrasil.com.br<mailto:wsilva_ericsson@timbrasil.com.br>> wrot=
e:
Good aftenoon !
I will install the syslog-ng OSE into a virtual machine with RHEL 7.
Is there anything I should worry about when installing on a virtual mac=
hine?
Is there something to configurated on OS, before or after the install s=
yslog-ng?
Tks,
William Luiz
Esta mensagem, incluindo seus anexos, pode conter informa=E7=F5es privilegi=
adas e/ou de car=E1ter confidencial, n=E3o podendo ser retransmitida sem au=
toriza=E7=E3o do remetente. Se voc=EA n=E3o =E9 o destinat=E1rio ou pessoa =
autorizada para receb=EA-la, informamos que o seu uso, divulga=E7=E3o, c=F3=
pia ou arquivamento s=E3o proibidos. Portanto, se voc=EA recebeu esta mensa=
gem por engano, por favor nos informe respondendo imediatamente a este e-ma=
il e delete o seu conte=FAdo.
This message, including its attachments, may contain privileged or confiden=
tial information, and it must not be fowarded without the express authoriza=
tion of the sender. If you are not the intended recipient, we hereby inform=
you that the use, disclosure, copy or filing are forbidden. So, if you rec=
eived this message as a mistake, please inform us by answering this e-mail =
and deleting its contents
Questo messaggio, inclusi gli allegati, potrebbe contenere informazioni pri=
vilegiate e/o riservate, e non deve essere ritrasmesse senza l'autorizzazio=
ne del mittente. Se non siete il destinatario o la persona autorizzata a ri=
ceverlo, informiamo che il suo utilizzo, diffusione, copia o archiviazione =
sono proibite. Quindi, se avete ricevuto questo messaggio per errore, per c=
ortesia ci informi rispondendo immediatamente a questa email e cancelli il =
suo contenuto
[Attachment #5 (text/html)]
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
<meta name="Generator" content="Microsoft Word 14 (filtered medium)">
<!--[if !mso]><style>v\:* {behavior:url(#default#VML);}
o\:* {behavior:url(#default#VML);}
w\:* {behavior:url(#default#VML);}
.shape {behavior:url(#default#VML);}
</style><![endif]--><style><!--
/* Font Definitions */
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:Tahoma;
panose-1:2 11 6 4 3 5 4 4 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
margin-bottom:.0001pt;
font-size:12.0pt;
font-family:"Times New Roman","serif";}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:purple;
text-decoration:underline;}
p
{mso-style-priority:99;
margin:0in;
margin-bottom:.0001pt;
font-size:12.0pt;
font-family:"Times New Roman","serif";}
span.EmailStyle18
{mso-style-type:personal-reply;
font-family:"Calibri","sans-serif";
color:#1F497D;}
.MsoChpDefault
{mso-style-type:export-only;
font-size:10.0pt;}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]-->
</head>
<body lang="EN-US" link="blue" vlink="purple">
<div class="WordSection1">
<p class="MsoNormal"><span \
style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D">I \
had issues with UDP packet drops. You can see my resolution \
here:<o:p></o:p></span></p> <p class="MsoNormal"><a \
href="https://lists.balabit.hu/pipermail/syslog-ng/2019-July/025364.html">https://lists.balabit.hu/pipermail/syslog-ng/2019-July/025364.html</a><span \
style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D"><o:p></o:p></span></p>
<p class="MsoNormal"><span \
style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D"><o:p> </o:p></span></p>
<p class="MsoNormal"><span \
style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D">Bryan<o:p></o:p></span></p>
<p class="MsoNormal"><span \
style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D"><o:p> </o:p></span></p>
<div>
<div style="border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0in 0in 0in">
<p class="MsoNormal"><b><span \
style="font-size:10.0pt;font-family:"Tahoma","sans-serif"">From:</span></b><span \
style="font-size:10.0pt;font-family:"Tahoma","sans-serif""> \
syslog-ng [mailto:syslog-ng-bounces@lists.balabit.hu] <b>On Behalf Of </b>William \
Luiz Ribeiro Vasconcelos Da Silva<br> <b>Sent:</b> Thursday, October 17, 2019 2:02 \
PM<br> <b>To:</b> Syslog-ng users' and developers' mailing list<br>
<b>Subject:</b> [EXTERNAL] Re: [syslog-ng] Install Syslog-ng OSE into Virtual Machine \
- RHEL OS<o:p></o:p></span></p> </div>
</div>
<p class="MsoNormal"><o:p> </o:p></p>
<div>
<p class="MsoNormal"><span \
style="font-family:"Calibri","sans-serif";color:black">Hi \
László,<o:p></o:p></span></p> </div>
<div>
<p class="MsoNormal"><span \
style="font-family:"Calibri","sans-serif";color:black"><o:p> </o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span \
style="font-family:"Calibri","sans-serif";color:black">What is \
the kernel parameters for heavy UDP traffic? Who to change it?<o:p></o:p></span></p> \
</div> <div>
<div>
<p class="MsoNormal"><span \
style="font-family:"Calibri","sans-serif";color:black"><o:p> </o:p></span></p>
</div>
<div class="MsoNormal" align="center" style="text-align:center">
<hr size="3" width="98%" align="center">
</div>
<div id="divRplyFwdMsg">
<p class="MsoNormal"><b><span \
style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:black">De:</span></b><span \
style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:black"> \
syslog-ng <syslog-ng-bounces@lists.balabit.hu> em nome de László Pál \
<vlad@vlad.hu><br> <b>Enviado:</b> quinta-feira, 17 de outubro de 2019 \
15:57<br> <b>Para:</b> Syslog-ng users' and developers' mailing list \
<syslog-ng@lists.balabit.hu><br> <b>Assunto:</b> Re: [syslog-ng] Install \
Syslog-ng OSE into Virtual Machine - RHEL OS</span> <o:p></o:p></p>
<div>
<p class="MsoNormal"> <o:p></o:p></p>
</div>
</div>
<div>
<p class="MsoNormal">RHEL and derivatives uses rsyslog by default, so if you plan to \
use syslog-ng instead, you should remove rsyslog first. Other configs are highly \
depends on your usecase (like adjust kernel parameters for heavy UDP traffic and so \
on). Also quite generic people are facing with issues with selinux and firewalld but \
obviously there are solutions for any of these (other than turning off these services \
:)) <o:p></o:p></p>
<div>
<p class="MsoNormal"><o:p> </o:p></p>
</div>
<div>
<p class="MsoNormal">L:<o:p></o:p></p>
</div>
<div>
<p class="MsoNormal"><o:p> </o:p></p>
<div>
<p class="MsoNormal"><br>
<br>
<o:p></o:p></p>
<div>
<p class="MsoNormal">On 2019. Oct 17., at 20:45, William Luiz Ribeiro Vasconcelos Da \
Silva <<a href="mailto:wsilva_ericsson@timbrasil.com.br">wsilva_ericsson@timbrasil.com.br</a>> \
wrote:<o:p></o:p></p> </div>
<p class="MsoNormal"><o:p> </o:p></p>
<div>
<div>
<p class="MsoNormal"><span \
style="font-family:"Calibri","sans-serif"">Good aftenoon \
!<o:p></o:p></span></p> </div>
<div>
<p class="MsoNormal"><span \
style="font-family:"Calibri","sans-serif""><o:p> </o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span \
style="font-family:"Calibri","sans-serif""> I will \
install the syslog-ng OSE into a virtual machine with RHEL \
7. <o:p></o:p></span></p> </div>
<div>
<p class="MsoNormal"><span \
style="font-family:"Calibri","sans-serif""><o:p> </o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span \
style="font-family:"Calibri","sans-serif""> \
<span style="color:#222222;background:#F8F9FA">Is there anything I should \
worry about when installing on a virtual machine?</span><o:p></o:p></span></p> </div>
<div>
<p class="MsoNormal"><span \
style="font-family:"Calibri","sans-serif""><o:p> </o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span \
style="font-family:"Calibri","sans-serif";color:#222222;background:#F8F9FA"> \
Is there something to configurated on OS, before or after the install \
syslog-ng?</span><span \
style="font-family:"Calibri","sans-serif""><o:p></o:p></span></p> \
</div> <div>
<p class="MsoNormal"><span \
style="font-family:"Calibri","sans-serif""><o:p> </o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span \
style="font-family:"Calibri","sans-serif""><o:p> </o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span \
style="font-family:"Calibri","sans-serif";color:#222222;background:#F8F9FA">Tks,</span><span \
style="font-family:"Calibri","sans-serif""><o:p></o:p></span></p> \
</div> <div>
<p class="MsoNormal"><span \
style="font-family:"Calibri","sans-serif";color:#222222;background:#F8F9FA">William \
Luiz</span><span style="font-family:"Calibri","sans-serif""><o:p></o:p></span></p>
</div>
<p class="MsoNormal"><o:p> </o:p></p>
</div>
</div>
<p class="MsoNormal"><o:p> </o:p></p>
</div>
</div>
</div>
<p class="MsoNormal"><br>
<span style="font-size:7.5pt">Esta mensagem, incluindo seus anexos, pode conter \
informações privilegiadas e/ou de caráter confidencial, não podendo ser retransmitida \
sem autorização do remetente. Se você não é o destinatário ou pessoa autorizada para \
recebê-la, informamos que o seu uso, divulgação, cópia ou arquivamento são \
proibidos. Portanto, se você recebeu esta mensagem por engano, por favor nos informe \
respondendo imediatamente a este e-mail e delete o seu conteúdo. \
<o:p></o:p></span></p> <p><span style="font-size:7.5pt">This message, including its \
attachments, may contain privileged or confidential information, and it must not be \
fowarded without the express authorization of the sender. If you are not the intended \
recipient, we hereby inform you that the use, disclosure, copy or filing are \
forbidden. So, if you received this message as a mistake, please inform us by \
answering this e-mail and deleting its contents <o:p></o:p></span></p>
<p><span style="font-size:7.5pt">Questo messaggio, inclusi gli allegati, potrebbe \
contenere informazioni privilegiate e/o riservate, e non deve essere ritrasmesse \
senza l'autorizzazione del mittente. Se non siete il destinatario o la persona \
autorizzata a riceverlo, informiamo che il suo utilizzo, diffusione, copia o \
archiviazione sono proibite. Quindi, se avete ricevuto questo messaggio per errore, \
per cortesia ci informi rispondendo immediatamente a questa email e cancelli il suo \
contenuto </span><o:p></o:p></p>
</div>
</body>
</html>
[Attachment #6 (text/plain)]
______________________________________________________________________________
Member info: https://lists.balabit.hu/mailman/listinfo/syslog-ng
Documentation: http://www.balabit.com/support/documentation/?product=syslog-ng
FAQ: http://www.balabit.com/wiki/syslog-ng-faq
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic