{"id":55,"date":"2007-12-08T00:00:47","date_gmt":"2007-12-07T16:00:47","guid":{"rendered":"http:\/\/broso.twbbs.org\/blojsom\/blog\/default\/ITTech\/?permalink=Syslog-network-traffic-of-Vigor-2910.html"},"modified":"2007-12-08T00:00:47","modified_gmt":"2007-12-07T16:00:47","slug":"syslog-network-traffic-of-vigor-2910","status":"publish","type":"post","link":"https:\/\/cychien.tw\/wordpress\/2007\/12\/08\/syslog-network-traffic-of-vigor-2910\/","title":{"rendered":"Syslog network traffic of Vigor 2910"},"content":{"rendered":"

\u5f9e Vigor 2910 \u525b\u8cb7\u4f86\u5c31\u77e5\u9053\u53ef\u4ee5\u5c07\u7db2\u8def\u6d41\u91cf log \u900f\u904e Broso syslog \u8a18\u9304\u4e0b\u4f86\uff0c\u65b9\u5f0f\u5f88\u7c21\u55ae\uff0c\u5728\u7ba1\u7406\u4ecb\u9762\u7cfb\u7d71\u7ba1\u7406\u4e2d\u5c07 syslogd server ip \u8a2d\u5b9a\u4e0a\u53bb\u5373\u53ef\u3002<\/p>\n

\"\"<\/p>\n

\u8a2d\u5b9a\u4e0a\u53bb\u5f8c\uff0c\/var\/log\/messages \u679c\u7136\u5c31\u8dd1\u51fa\u4f86\u5f88\u591a 2910 \u7684 log\u3002<\/p>\n\n\n\n
\n
\n[root@broso log]# tail -200f messages
\nDec 7 22:53:31 my.router Vigor: Open port: 220.132.143.85:47549 -> 192.168.1.14:80 (TCP) Web
\nDec 7 22:53:31 my.router Vigor: 459:44:35.110 wan->lan @S:R=13:1 p 220.132.143.85,47549 -> 192.168.1.14,www PR tcp len 20 48 -S 94932610 0 65535
\nDec 7 22:53:35 my.router Vigor: WAN1 PPPoE ==> Protocol:LCP(c021) EchoReq Identifier:0x18Magic Number: 0x0 00 00 ##
\nDec 7 22:53:36 my.router Vigor: WAN1 PPPoE <== Protocol:LCP(c021) EchoRep Identifier:0x18Magic Number: 0x1360 9b 98 ##
\nDec 7 22:53:39 my.router Vigor: WAN1 PPPoE ==> Protocol:LCP(c021) EchoReq Identifier:0x19Magic Number: 0x0 00 00 ##
\nDec 7 22:53:40 my.router Vigor: WAN1 PPPoE <== Protocol:LCP(c021) EchoRep Identifier:0x19Magic Number: 0x1360 9b 98 ##
\nDec 7 22:53:43 my.router Vigor: WAN1 PPPoE ==> Protocol:LCP(c021) EchoReq Identifier:0x1AMagic Number: 0x0 00 00 ##
\nDec 7 22:53:44 my.router Vigor: WAN1 PPPoE <== Protocol:LCP(c021) EchoRep Identifier:0x1AMagic Number: 0x1360 9b 98 ##
\nDec 7 22:53:46 my.router Vigor: Local User: 192.168.1.14:80 -> 220.132.143.85:47549 (TCP) close connection
\nDec 7 22:53:46 my.router Vigor: Local User: 192.168.1.12:1276 -> 220.132.143.85:80 (TCP) close connection
\nDec 7 22:53:47 my.router Vigor: WAN1 PPPoE ==> Protocol:LCP(c021) EchoReq Identifier:0x1BMagic Number: 0x0 00 00 ##
\nDec 7 22:53:47 my.router Vigor: WAN1 PPPoE <== Protocol:LCP(c021) EchoRep Identifier:0x1BMagic Number: 0x1360 9b 98 ##
\n<\/font>\n <\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

\u4f46\u96a8\u8457\u6642\u9593\u8d8a\u4f86\u8d8a\u4e45\uff0c\/var\/log\/messages \u4e2d\u7d00\u9304\u592a\u591a\u4e86\u7db2\u8def\u7684 log\uff0c\u53cd\u800c messages \u4e2d\u8a72\u88ab\u6ce8\u610f\u7684\u4e00\u4e9b\u8a0a\u606f\u88ab\u6df9\u6c92\u5728\u832b\u832b log \u5927\u6d77\u4e2d\uff0c\u56e0\u6b64\u8a72\u60f3\u500b\u8fa6\u6cd5\u4f86\u5c07 log \u5206\u6d41\u5230\u4e0d\u540c\u7684\u6a94\u6848\u4e2d\u3002<\/p>\n

\u5728\u80a1\u6e9d\u4e2d\u67e5\u4e86\u4e00\u4e0b\uff0c\u5f97\u77e5 Vigor \u7cfb\u5217\u7684 router \u57fa\u672c\u4e0a\u63d0\u4f9b\u4e86\u4e0b\u5217\u7684 device \u4f86\u5340\u5206 log<\/p>\n

    \n
  • local0: Firewall-Log <\/li>\n
  • local1: VPN-Log <\/li>\n
  • local2: User-Access-Log <\/li>\n
  • local3: Call-Log <\/li>\n
  • local4: WAN-Log <\/li>\n
  • local5: ADSL Status & Traffic Statistics <\/li>\n<\/ul>\n

    \u65bc\u662f\u4fbf\u4fee\u6539\u4e86 \/etc\/syslog.conf \u5982\u4e0b<\/p>\n\n\n\n
    \n
    \n# Save Vigot 2910 Router network log
    \n
    local0.*                                                \/var\/log\/vigor\/firewall.log <\/p>\n

    local1.*                                                \/var\/log\/vigor\/vpn.log <\/p>\n

    local2.*                                                \/var\/log\/vigor\/user-access.log <\/p>\n

    local3.*                                                \/var\/log\/vigor\/call.log <\/p>\n

    local4.*                                                \/var\/log\/vigor\/wan.log <\/p>\n

    local5.*                                                \/var\/log\/vigor\/adsl.log
    \n<\/font>\n <\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

    \u91cd\u8d77\u4e86 syslogd \u5f8c\uff0c\u767c\u73fe\u600e\u9ebc \/var\/log\/messaes \u9084\u662f\u6709 2910 \u7684 log\uff0c\u518d\u4ed4\u7d30\u5bdf\u770b\u4e86\u4e00\u4e0b syslog.conf\uff0c\u539f\u4f86\u662f\u7b2c\u4e00\u884c\u5fd8\u4e86\u5c07 local0~5 \u7684 log\uff0c\u5f9e \/var\/log\/messages \u4e2d\u6ffe\u9664\u3002\u4fee\u6539\u5982\u4e0b\uff1a<\/p>\n\n\n\n
    \n
    \n*.info;mail.none;authpriv.none;cron.none;local0.none;local1.none;local2.none;local3.none;local4.none; local5.none \/var\/log\/messages
    \n
    \n<\/font>\n <\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

    \u91cd\u8d77 syslogd \u5f8c\uff0c\u679c\u7136 \/var\/log\/messages \u5c31\u5df2\u7d93\u4e0d\u518d\u51fa\u73fe Vigor router \u7684 log \u4e86\u3002<\/p>\n","protected":false},"excerpt":{"rendered":"

    \u5f9e Vigor 2910 \u525b\u8cb7\u4f86\u5c31\u77e5\u9053\u53ef\u4ee5\u5c07\u7db2\u8def\u6d41\u91cf log \u900f\u904e Broso syslog \u8a18\u9304\u4e0b\u4f86\uff0c\u65b9\u5f0f\u5f88 […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[9],"tags":[],"class_list":["post-55","post","type-post","status-publish","format-standard","hentry","category-ittech"],"_links":{"self":[{"href":"https:\/\/cychien.tw\/wordpress\/wp-json\/wp\/v2\/posts\/55","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/cychien.tw\/wordpress\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cychien.tw\/wordpress\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cychien.tw\/wordpress\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/cychien.tw\/wordpress\/wp-json\/wp\/v2\/comments?post=55"}],"version-history":[{"count":0,"href":"https:\/\/cychien.tw\/wordpress\/wp-json\/wp\/v2\/posts\/55\/revisions"}],"wp:attachment":[{"href":"https:\/\/cychien.tw\/wordpress\/wp-json\/wp\/v2\/media?parent=55"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cychien.tw\/wordpress\/wp-json\/wp\/v2\/categories?post=55"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cychien.tw\/wordpress\/wp-json\/wp\/v2\/tags?post=55"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}