Using the LibreNMS documentation for setting up syslog-ng so LibreNMS can ingest logs from Cisco, Mikrotik, Ubiquiti etc. equipment.<\/p>\n\n\n\n
https:\/\/docs.librenms.org\/Extensions\/Syslog\/<\/a><\/p>\n\n\n\n First thing we need to do is enable syslog for LibreNMS. Edit the \/opt\/librenms\/config.php and add or enable<\/p>\n\n\n\n <\/p>\n\n\n\n Install syslog-ng with dnf or yum.<\/p>\n\n\n\n Create a config file for LibreNMS<\/p>\n\n\n\n Put the following in the config file<\/p>\n\n\n\n Restart and enable syslog-ng<\/p>\n\n\n\n <\/p>\n\n\n\n If we are running SELinux, we’ll need to make and apply a module to let the logs show up in the web interface.<\/p>\n\n\n\n Put the following in the file<\/p>\n\n\n\n Now run the following commands to make and apply our SELinux module.<\/p>\n\n\n\n Using the LibreNMS documentation for setting up syslog-ng so LibreNMS can ingest logs from Cisco, Mikrotik, Ubiquiti etc. equipment. https:\/\/docs.librenms.org\/Extensions\/Syslog\/ Enable Syslog in LibreNMS settings First thing we need to do is enable syslog for LibreNMS. Edit the \/opt\/librenms\/config.php and … Continue reading Enable Syslog in LibreNMS settings<\/h2>\n\n\n\n
$config['enable_syslog'] = 1;<\/pre>\n\n\n\n
Install and Configure syslog-ng<\/h2>\n\n\n\n
sudo dnf install -y syslog-ng<\/pre>\n\n\n\n
vi \/etc\/syslog-ng\/conf.d\/librenms.conf<\/pre>\n\n\n\n
source s_net {\n tcp(port(514) flags(syslog-protocol));\n udp(port(514) flags(syslog-protocol));\n};\n\ndestination d_librenms {\n program(\"\/opt\/librenms\/syslog.php\" template (\"$HOST||$FACILITY||$PRIORITY||$LEVEL||$TAG||$R_YEAR-$R_MONTH-$R_DAY $R_HOUR:$R_MIN:$R_SEC||$MSG||$PROGRAM\\n\") template-escape(yes));\n};\n\nlog {\n source(s_net);\n source(s_sys);\n destination(d_librenms);\n};<\/pre>\n\n\n\nsudo systemctl restart syslog-ng\nsudo systemctl enable syslog-ng<\/pre>\n\n\n\n
SELinux<\/h2>\n\n\n\n
vi librenms-rsyslog.te<\/pre>\n\n\n\n
module mycustom-librenms-rsyslog 1.0;\n\nrequire {\n type syslogd_t;\n type httpd_sys_rw_content_t;\n type ping_exec_t;\n class process execmem;\n class dir { getattr search write };\n class file { append getattr execute open read };\n}\n\n#============= syslogd_t ==============\nallow syslogd_t httpd_sys_rw_content_t:dir { getattr search write };\nallow syslogd_t httpd_sys_rw_content_t:file { open read append getattr };\nallow syslogd_t self:process execmem;\nallow syslogd_t ping_exec_t:file execute;<\/pre>\n\n\n\ncheckmodule -M -m -o librenms-rsyslog.mod librenms-rsyslog.te\nsemodule_package -o librenms-rsyslog.pp -m librenms-rsyslog.mod\nsudo semodule -i librenms-rsyslog.pp<\/pre>\n","protected":false},"excerpt":{"rendered":"