I try to remote log my OpenWRT system. For that i set /etc/config/system like:
config system
option hostname 'MySystem'
option timezone 'UTC'
option log_file '/var/log/messages'
option log_type 'file'
option log_size '64'
option log_rotated '10'
option log_ip '192.168.1.200'
On my Ubuntu system i try to receive those log messages. syslog-ng is installed. /etc/syslog-ng/syslog-ng.conf looks like:
@version: 3.5
@include "scl.conf"
@include "`scl-root`/system/tty10.conf"
# First, set some global options.
options { chain_hostnames(off); flush_lines(0); use_dns(no); use_fqdn(no);
owner("root"); group("adm"); perm(0640); stats_freq(0);
bad_hostname("^gconfd$");
};
source s_net { udp(); };
destination s_messages { file("/var/log/my_test/remote.log");};
log { source(s_net); destination(s_messages);};
@include "/etc/syslog-ng/conf.d/*.conf"
Whenever a log message is logged on OpenWRT in /var/log/messages the file says:
Mon Dec 19 15:11:18 2016 daemon.emerg logread[1021]: Logread connected to 192.168.1.200:514
Mon Dec 19 15:11:27 2016 local0.info my_service[1348]: My logging message
Mon Dec 19 15:11:27 2016 daemon.emerg logread[1021]: failed to send log data to 192.168.1.200:514 via udp
What could be the problem? Ping from OpenWRT to 192.168.1.200 is successful. I guess OpenWRT is workling fine. Problem is the syslog-ng configuration right?
Thx for any help!
Finally it worked. Problem was on my ubuntu system (firewall). OpenWRT worked fine.