[How to] install a syslog server jail

Yatti420

Wizard
Joined
Aug 12, 2012
Messages
1,437

Yatti420

Wizard
Joined
Aug 12, 2012
Messages
1,437
Last edited:
Joined
Mar 6, 2014
Messages
686

Yatti420

Wizard
Joined
Aug 12, 2012
Messages
1,437
No analysis currently.. Just raw storage..No pfsense although I probably should have one but do we really really need hardware firewall versus just a plain dumb router these days?
 
Joined
Mar 6, 2014
Messages
686
No analysis currently.. Just raw storage..No pfsense although I probably should have one but do we really really need hardware firewall versus just a plain dumb router these days?
Well, you do if you want any (fine-grained) control over it.
 

Jabberwocky

Cadet
Joined
Apr 15, 2015
Messages
1
Hi, I try to install this but loganalyzer was deleted from freebsd ports 10.x.... :(
also pkg install gives me an error triying to install php56.

Exist another way to install loganalyzer from ports? another fetch address ?
Or an alternative?

Thank you.
 

Osiris

Contributor
Joined
Aug 15, 2013
Messages
148
I can still find it in the ports tree after fetching an update
upload_2016-10-3_15-28-23.png


/usr/ports/sysutils/loganalyzer is still here
upload_2016-10-3_15-29-17.png


Am I missing something?
 

Attachments

  • upload_2016-10-3_15-27-46.png
    upload_2016-10-3_15-27-46.png
    1.5 KB · Views: 621
  • upload_2016-10-3_15-28-14.png
    upload_2016-10-3_15-28-14.png
    1.6 KB · Views: 734

gaikokujinch

Cadet
Joined
Dec 27, 2016
Messages
4
I got stuck at the
  • Open http://{jail IP address}/phpmyadmin/setup
The jail IP address gives me a

Not Found

The requested URL /phpMyAdmin/setup was not found on this server.

message. Until that point every worked exactly as described. I have restarted Apache and MySQL but no luck. Any ideas or troubleshooting tips?
 

gaikokujinch

Cadet
Joined
Dec 27, 2016
Messages
4
It works now. I deleted the whole jail and started from scratch. Everything now works as described. Thanks again for that great tutorial!
 

Visseroth

Guru
Joined
Nov 4, 2011
Messages
546
maybe. I followed my tracks back through the steps and found I forgot to add index.php to /usr/local/etc/apache24/httpd.conf
 

Visseroth

Guru
Joined
Nov 4, 2011
Messages
546
I noticed my log server isn't receiving anything. Likely a firewall issue on the jail?
 

Visseroth

Guru
Joined
Nov 4, 2011
Messages
546
So I've reinstalled the jail a couple different times and I have multiple devices point to it but it doesn't seem to be collecting anything. Anyone have any ideas?
 

beedix

Dabbler
Joined
Aug 11, 2017
Messages
20
Unfortunately, loganalyzer is no longer present. Is there a workaround or another similar syslog setup that someone would recommend? Here is the specific error (i've fetched updates to no avail):

Code:
root@syslog:/usr/ports/ports-mgmt/pkg # cd /usr/ports/sysutils/loganalyzer && make install clean DEFAULT_VERSIONS=php=56
/usr/ports/sysutils/loganalyzer: No such file or directory.
 

beedix

Dabbler
Joined
Aug 11, 2017
Messages
20
I ended up installing the LogAnalyzer part from a tarball. End result works great! I still need to setup some pruning, but otherwise, this is going to work very nicely for me. Here are a few notes from the portion of my install where I used the tarball to install the necessary files within apache:

Code:
// Install LogAnalyzer
wget http://download.adiscon.com/loganalyzer/loganalyzer-4.1.5.tar.gz
tar zxvf loganalyzer-4.1.5.tar.gz
cp -r loganalyzer-4.1.5/src/ /usr/local/www/apache24/data/loganalyzer
cp -r loganalyzer-4.1.5/contrib/* /usr/local/www/apache24/data/loganalyzer
cd cd /usr/local/www/loganalyzer/
chmod +x configure.sh secure.sh
ln -s /usr/local/www/loganalyzer /usr/local/www/apache24/data/loganalyzer
service apache24 restart
 

Astrodonkey

Explorer
Joined
Jul 18, 2017
Messages
72
Had some trouble running through this when querying mysql. When doing this:
Code:
USE Syslog;
SELECT * FROM SystemEvents;

Not seeing any records returned.

There also appears to be some issues with my php configuration in /var/log/httpd-error.log:
Code:
PHP Warning:  PHP Startup: Unable to load dynamic library '/usr/local/lib/php/20131226/php_mbstring.so' - Cannot open "/usr/local/lib/php/20131226/php_mbstring.so" in Unknown on line 0
PHP Warning:  PHP Startup: Unable to load dynamic library '/usr/local/lib/php/20131226/php_pdo_mysql.so' - Cannot open "/usr/local/lib/php/20131226/php_pdo_mysql.so" in Unknown on line 0
 

wah00kid

Dabbler
Joined
Nov 24, 2015
Messages
37
I do fine but don't get that far and get this error:

Code:
root@syslog:~ # cd /usr/ports/www/apache24 && make
===>  apache24-2.4.29 Invalid perl5 version 5.20.
*** Error code 1

Stop.
make: stopped in /usr/ports/www/apache24
root@syslog:/usr/ports/www/apache24 


I'm on 9.10.

Any ideas or is there a better version of this?
 

Jrod696

Explorer
Joined
Nov 20, 2017
Messages
52
on FN 11 most of the installs want to work? Has anyone had any luck getting this running on V11? Nothing comes up on google, just this post every time.
 

Jrod696

Explorer
Joined
Nov 20, 2017
Messages
52
Having similar issue as Jrod, any thoughts on updating the guide for v11?

I was able to get the sql portion to work but gave up on the apache, I just used MY SQL Workbench instead.

Anyway I walked through the steps to install the latest version of mysql for freeebsd and it seemed to work but I could not remote in or do anything.
After hours I found it!

you have to change the bind-address to 0.0.0.0
I prefer nano ("pkg install nano") so the command I have saved in my notes is:
ssh or enter the jail through the gui and use
"nano /usr/local/etc/mysql/my.cnf"
then save
then do a restart of the server:
"service mysql-server restart"

Hope this helps.
 
Top