• July 14, 2025, 01:30:35 PM
  • Welcome, Guest
Please login or register.

Login with username, password and session length
Advanced search  

News:

This Forum Beta is ONLY for registered owners of D-Link products in the USA for which we have created boards at this time.

Author Topic: logs vs rsyslogs  (Read 3918 times)

Sebastian

  • Level 1 Member
  • *
  • Posts: 14
logs vs rsyslogs
« on: January 19, 2009, 09:23:51 AM »
did set-up my ubuntu box with rsyslog.
logging works but not on all records and seems not accurate:

LOG from router:
[INFO] Tue Jan 20 01:18:09 2009 Blocked incoming TCP connection request from 116.53.241.107:25555 to 58.33.33.81:31186
[INFO] Tue Jan 20 01:18:07 2009 Blocked incoming TCP connection request from 95.64.72.190:2859 to 58.33.33.81:6882
[INFO] Tue Jan 20 01:18:03 2009 Blocked incoming TCP connection request from 116.53.241.107:25555 to 58.33.33.81:31186
[INFO] Tue Jan 20 01:18:01 2009 Blocked incoming TCP connection request from 95.64.72.190:2859 to 58.33.33.81:6882
[INFO] Tue Jan 20 01:18:00 2009 Blocked incoming TCP connection request from 116.53.241.107:25555 to 58.33.33.81:31186
[INFO] Tue Jan 20 01:17:58 2009 Blocked incoming TCP connection request from 95.64.72.190:2859 to 58.33.33.81:6882
[INFO] Tue Jan 20 01:17:57 2009 Blocked incoming TCP connection request from 78.97.235.198:53130 to 58.33.33.81:6882
[INFO] Tue Jan 20 01:17:54 2009 Blocked incoming TCP connection request from 92.81.247.158:63815 to 58.33.33.81:6884
[INFO] Tue Jan 20 01:17:53 2009 Log viewed by IP address 192.168.0.100
[INFO] Tue Jan 20 01:17:51 2009 Blocked incoming TCP connection request from 78.97.235.198:53130 to 58.33.33.81:6882
[INFO] Tue Jan 20 01:17:49 2009 Above message repeated 1 times
[INFO] Tue Jan 20 01:17:48 2009 Blocked incoming TCP connection request from 92.81.247.158:63815 to 58.33.33.81:6884
[INFO] Tue Jan 20 01:17:46 2009 Log viewed by IP address 192.168.0.100
[INFO] Tue Jan 20 01:17:45 2009 Blocked incoming TCP connection request from 79.116.245.107:3547 to 58.33.33.81:6882
[INFO] Tue Jan 20 01:17:45 2009 Blocked incoming TCP connection request from 92.81.247.158:63815 to 58.33.33.81:6884
[INFO] Tue Jan 20 01:17:44 2009 Log cleared by IP address 192.168.0.100

LOG from rsyslog:

Jan 20 01:14:49 Tue Jan 20 00:59:34 2009 D-Link Systems DIR-655 System Log: Blocked incoming TCP connection request from 95.64.72.190:1476 to 58.33.33.81:6882
Jan 20 01:15:04 Tue Jan 20 00:59:52 2009 D-Link Systems DIR-655 System Log: Blocked incoming UDP packet from 67.160.92.134:15518 to 58.33.33.81:6883
Jan 20 01:15:19 Tue Jan 20 01:00:05 2009 D-Link Systems DIR-655 System Log: Blocked incoming TCP connection request from 82.114.70.170:2234 to 58.33.33.81:6882
Jan 20 01:15:34 Tue Jan 20 01:00:22 2009 D-Link Systems DIR-655 System Log: Blocked incoming TCP connection request from 92.11.243.92:58821 to 58.33.33.81:6884
Jan 20 01:15:49 Tue Jan 20 01:00:35 2009 D-Link Systems DIR-655 System Log: Blocked incoming TCP connection request from 93.113.175.11:4716 to 58.33.33.81:6882
Jan 20 01:16:04 Tue Jan 20 01:00:49 2009 D-Link Systems DIR-655 System Log: Blocked incoming UDP packet from 81.72.118.28:14668 to 58.33.33.81:6883
Jan 20 01:16:19 Tue Jan 20 01:01:04 2009 D-Link Systems DIR-655 System Log: Blocked incoming TCP connection request from 87.13.180.10:2264 to 58.33.33.81:6883
Jan 20 01:16:34 Tue Jan 20 01:01:25 2009 D-Link Systems DIR-655 System Log: Blocked incoming UDP packet from 24.16.217.76:22071 to 58.33.33.81:6883
Jan 20 01:16:49 Tue Jan 20 01:01:35 2009 D-Link Systems DIR-655 System Log: Blocked incoming UDP packet from 91.42.108.103:33434 to 58.33.33.81:6883
Jan 20 01:17:04 Tue Jan 20 01:01:51 2009 D-Link Systems DIR-655 System Log: Blocked incoming TCP connection request from 93.113.175.11:4778 to 58.33.33.81:6882
Jan 20 01:17:19 Tue Jan 20 01:02:05 2009 D-Link Systems DIR-655 System Log: Blocked incoming TCP connection request from 62.217.226.34:3364 to 58.33.33.81:6882
Jan 20 01:17:01 neptun /USR/SBIN/CRON[9284]: (root) CMD (   cd / && run-parts --report /etc/cron.hourly)
Jan 20 01:17:34 Tue Jan 20 01:02:22 2009 D-Link Systems DIR-655 System Log: Blocked incoming TCP connection request from 92.80.100.91:62497 to 58.33.33.81:6882
Jan 20 01:17:49 Tue Jan 20 01:02:36 2009 D-Link Systems DIR-655 System Log: Blocked incoming TCP connection request from 78.97.235.198:52194 to 58.33.33.81:6882
Jan 20 01:18:04 Tue Jan 20 01:02:52 2009 D-Link Systems DIR-655 System Log: Blocked incoming TCP connection request from 87.13.180.10:2348 to 58.33.33.81:6883
Jan 20 01:18:19 Tue Jan 20 01:03:05 2009 D-Link Systems DIR-655 System Log: Blocked incoming TCP connection request from 79.119.253.10:2245 to 58.33.33.81:6882
Jan 20 01:18:34 Tue Jan 20 01:03:20 2009 D-Link Systems DIR-655 System Log: Blocked incoming TCP connection request from 92.81.247.158:63280 to 58.33.33.81:6884
Jan 20 01:18:49 Tue Jan 20 01:03:40 2009 D-Link Systems DIR-655 System Log: Blocked incoming UDP packet from 78.69.156.62:28941 to 58.33.33.81:6884
Logged