RE: sending syslog using domain names

From: asadovnikov (asadovnikov@comcast.net)
Date: Wed Jul 23 2003 - 20:53:57 GMT-3

BTH, you need the pointer record for the interface router sends the messages
from. The easiest way to ensure that is to put PTR for loopback, and then
specify loopbakc as a syslog source-interface. Then if your logging server
is configured right it all will work.

I do not think there is a way to instruct a router to put a name into the
messages.

Best regards,
Alexei

-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com]On Behalf Of
Mustafa Bayramov (ICT/IT)
Sent: Wednesday, July 23, 2003 8:28 PM
To: balaji.balakrishnan
Cc: ccielab@groupstudy.com
Subject: RE: sending syslog using domain names

Try to add PTR record for IP address then send to syslogd msg
Also check your syslogd man page maybe you will find answer there.

BSD 4.8

SYSLOGD(8) FreeBSD System Manager's Manual
SYSLOGD(8)

NAME
     syslogd - log systems messages

SYNOPSIS
     syslogd [-46Adknsuv] [-a allowed_peer] [-b bind_address] [-f
config_file]
             [-m mark_interval] [-p log_socket] [-P pid_file] [-l path]

-n Disable dns query for every request.

-a allowed_peer
             Allow allowed_peer to log to this syslogd using UDP datagrams.
             Multiple -a options may be specified.
             Allowed_peer can be any of the following: ....

             domainname[:service] Accept datagrams where the reverse
                                         address lookup yields domainname
for
                                         the sender address. The meaning of
                                         service is as explained above.

             *domainname[:service] Same as before, except that any
                                         source host whose name ends in
                                         domainname will get permission.

Regards

-----Original Message-----
From: balaji.balakrishnan [mailto:balaji.balakrishnan@swift.com]
Sent: Wednesday, July 23, 2003 3:37 PM
To: Mustafa Bayramov (ICT/IT)
Cc: ccielab@groupstudy.com
Subject: Re: sending syslog using domain names

Group,

Does nobody read the question well or am I not putting the question is
right words.
Question is not about configuring basic logging or configuring name
servers. Assuming that they were already configured, the
question is that how to configure the router to send domain names instead of
IP address in the syslog messages like,
" neighbor loopack.1.cpe down" instead of " neighbor 1.1.1.1 down"

Is that clear ??

-bala.

"Mustafa Bayramov (ICT/IT)" wrote:

> comm_serve_r4$(config)#logging ?
> Hostname or A.B.C.D IP address of the logging host --- > you can do it
> buffered Set buffered logging parameters
> console Set console logging level
> exception Limit size of exception flush output
> facility Facility parameter for syslog messages
> history Configure syslog history table
> monitor Set terminal line (monitor) logging level
> on Enable logging to all supported destinations
> rate-limit Set messages per second limit
> source-interface Specify interface for source address in logging
> transactions
> trap Set syslog server logging level
> -----Original Message-----
> From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
> balaji.balakrishnan
> Sent: Wednesday, July 23, 2003 2:48 PM
> To: Jonathan V Hays
> Cc: ccielab@groupstudy.com
> Subject: Re: sending syslog using domain names
>
> Jonathan,
>
> You did not read the question well.
> I did not asked how to configure the router as dns client.
> The question is how to configure the router to query DNS so that it
would
> report domain name instead of IP address in the syslog
> messages.
> By default, router would not do so even when you configured name-servers.
>
> Rgds,
> Bala.
>
> Jonathan V Hays wrote:
>
> > Information on configuring your Cisco router as a DNS client is here -
> >
> > http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122cgcr/
> > fipr_c/ipcprt1/1cfipadr.htm#1001317
> >
> > -----Original Message-----
> > From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
> > balaji.balakrishnan
> > Sent: Wednesday, July 23, 2003 12:34 PM
> > To: ccielab@groupstudy.com
> > Subject: sending syslog using domain names
> >
> > Hi group,
> >
> > I have a specific syslog requirement. Is it possible to configure a
> > router to send syslog with domain name instead of IP address.
> > For example, let say router is sending bgp down event as " neighbor
> > 1.1.1.1 down". Let say we have DNS server having entry 1.1.1.1
> > --> Loopack1.cpe1.
> > Is it possible to configure router to refer DNS server and resolve the
> > IP with name and send the syslog as " neighbor Loopack1.cpe1
> > down.
> >
> > Thanks for your help.
> >
> > Rgds,
> > Bala.
> >
> > [GroupStudy removed an attachment of type application/x-pkcs7-signature
> > which had a name of smime.p7s]
> >
> > _______________________________________________________________________
> > You are subscribed to the GroupStudy.com CCIE R&S Discussion Group.
> >
> > Subscription information may be found at:
> > http://www.groupstudy.com/list/CCIELab.html
> >
> > _______________________________________________________________________
> > You are subscribed to the GroupStudy.com CCIE R&S Discussion Group.
> >
> > Subscription information may be found at:
> > http://www.groupstudy.com/list/CCIELab.html
>
> [GroupStudy removed an attachment of type application/x-pkcs7-signature
> which had a name of smime.p7s]
>
> _______________________________________________________________________
> You are subscribed to the GroupStudy.com CCIE R&S Discussion Group.
>
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
>
> _______________________________________________________________________
> You are subscribed to the GroupStudy.com CCIE R&S Discussion Group.
>
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html

This archive was generated by hypermail 2.1.4 : Wed Aug 06 2003 - 06:52:51 GMT-3