Syslog: Difference between revisions

From ICO wiki
Jump to navigationJump to search
Kadamsoo (talk | contribs)
No edit summary
Kadamsoo (talk | contribs)
Line 181: Line 181:

'''cat /var/log/syslog'''
'''cat /var/log/syslog'''

Like the dmesg command above, this will produce a large amount of output. You can use the grep and less commands to work with the output:
Like the dmesg command above, this will produce a large amount of output. You can use the grep and less commands to work with the output:

Revision as of 14:23, 24 November 2015


Kaari Zalite A31 2015/2016


Järgnev artikkel seletab endas lahti syslog mõiste, saame teada, mida syslog endas sisaldab ja miks on see meile vajalik.


Syslog on utiliit, mis genereerib logifailid ning saadab need Linxi süsteemi logifaili, mis asub /var/log/ kaustas, kus neid omakorda analüüsitakse. Syslog'i teateid saadavad välja erinevad võrguseadmed: ruuterid, switchid jms. Syslog'i teated sisaldavad tavaliselt informatsiooni: kus, millal ja miks teade saadeti.


The Facility value is a way of determining which process of the machine created the message. Since the Syslog protocol was originally written on BSD Unix, the Facilities reflect the names of Unix processes and Daemons. The priority value is calculated using the following formula: Priority = Facility * 8 + Level

A facility code is used to specify the type of program that is logging the message. Messages with different facilities may be handled differently.[4] The list of facilities available[5] is defined by RFC 3164:

The list of Facilities available:

Kood Võtmesõna Kirjeldus
0 kern kesksed teated
1 user kasutajapõhised teated
2 mail mailisüsteem
3 daemon süsteemiprogrammid
4 auth kaitse/loa teated
5 syslog teated genereeritakse syslogd poolt
6 lpr line printer subsystem
7 news network news subsystem
8 uucp UUCP subsystem
9 clock daemon
10 authpriv security/authorization messages
11 ftp FTP daemon
12 - NTP subsystem
13 - log audit
14 - log alert
15 cron scheduling daemon
16 local0 local use 0 (local0)
17 local1 local use 1 (local1)
18 local2 local use 2 (local2)
19 local3 local use 3 (local3)
20 local4 local use 4 (local4)
21 local5 local use 5 (local5)
22 local6 local use 6 (local6)
23 local7 local use 7 (local7)

Probleemide raskusastmed

Väärtus Raskusaste Võtmesõna Kirjeldus Selgitus
0 Emergency emerg Süsteem on kasutuskõlbmatu Paanika! Põhjuseks võib olla looduskatastroof.
1 Alert alert Tuleb koheselt korda teha Tuleb koheselt korda teha.
2 Critical crit Kriitiline seisund Tuleb koheselt reageerida. "Critical" tuleb korda teha enne "Alert" seisundit.
3 Error err Vea seisund Tuleb üle anda arendajale või administraatorile ja kindla aja jooksul korda teha.
4 Warning warning Hoiatuse seisund Ei ole veel viga, aga kui midagi ette ei võeta, siis võib viga tekkida.
5 Notice notice Normaalne, aga siiski tähtis seisund Mitte tavapärased teated, peaks tähelepanu pöörama, aga mitte koheselt.
6 Informational info Informatsioonilised teated Teated informatsiooniks, ei pea midagi tegema.
7 Debug debug debug-level teated Kasulik info arendajale programmide parendamiseks.

Teated 5 ja 6 on täiesti normaalsed.

Syslog sisu vaatamine

Prindib välja syslog faili sisu

cat /var/log/syslog

Like the dmesg command above, this will produce a large amount of output. You can use the grep and less commands to work with the output:

grep something /var/log/syslog

less /var/log/syslog

Other useful commands include the head and tail commands. head prints the first n lines in a file, while tail prints the last n lines in the file – if you want to view recent log messages, the tail command is particularly useful.

head -n 10 /var/log/syslog

tail -n 10 /var/log/syslog

Kasutatud materjalid