Solved: Re: weird syslog message format

Ferdi0802 · ‎03-19-2011

I'm running syslog daemon on Solaris 7. It can receive cisco devices log, but the message format is a little bit strange

[server time-stamp] [X.X.X.X.Y.Y] [cisco log message]

where X.X.X.X is the device IP address and Y.Y is random number.

What cause syslog add Y.Y number to the device IP address?

Raphael Wouters · ‎03-28-2011

That should be the port in octet form, with [x.x.x.x.y1.y2] you get the port with: (y1*256)+y2

This seems to be a Solaris specific behavior when it doesn't find the hostname (DNS and /etc/hosts) it uses this format.

Raphael Wouters · ‎03-28-2011

That should be the port in octet form, with [x.x.x.x.y1.y2] you get the port with: (y1*256)+y2

This seems to be a Solaris specific behavior when it doesn't find the hostname (DNS and /etc/hosts) it uses this format.