Palo CEF logging to messages not syslog't%20exist.%26nbsp%3B%3C%2FP%3E%3CP%3EMy%20next%20move%20was%20to%20check%20messages%20and%20that's%20where%20i%20found%20all%20my%20CEF%20messages.%20How%20do%20i%20configure%20rsyslog%20to%20log%20to%20%2Fvar%2Flog%2Fsyslog%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThanks%2C%3C%2FP%3E%3CP%3ERogueIT%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-S
Occasional Visitor

When I run the i see the following logged to screen


sudo tac /var/log/syslog
tac: failed to open ‘/var/log/syslog’ for reading: No such file or directory
Located 0
 CEF\ASA messages

When I went to read /var/log/syslog, i found that log didn't exist. 

My next move was to check messages and that's where i found all my CEF messages. How do i configure rsyslog to log to /var/log/syslog?




2 Replies


My friend after working with MS for 4 hours, we rebuild the server on Ubuntu, it fixed all the problems :)

@arshad80 and yes it was CentOS with the similar issue you had, i installed new CentOS same issue so i ended up calling MS and they had me install ubuntu and guess what it fixed this issue.