From owner-freebsd-questions  Tue Mar 27 20:45:22 2001
Delivered-To: freebsd-questions@freebsd.org
Received: from nameserver.austclear.com.au (nameserver.austclear.com.au [192.83.119.132])
	by hub.freebsd.org (Postfix) with ESMTP id EE7EE37B719
	for <freebsd-questions@FreeBSD.ORG>; Tue, 27 Mar 2001 20:45:17 -0800 (PST)
	(envelope-from ahl@austclear.com.au)
Received: from tungsten.austclear.com.au (tungsten.austclear.com.au [192.168.70.1])
	by nameserver.austclear.com.au (8.9.3/8.9.3) with ESMTP id OAA64075;
	Wed, 28 Mar 2001 14:45:16 +1000 (EST)
Received: from tungsten (tungsten [192.168.70.1])
        by tungsten.austclear.com.au (8.9.3/8.9.3) with ESMTP id OAA20622;
        Wed, 28 Mar 2001 14:45:16 +1000 (EST)
Message-Id: <200103280445.OAA20622@tungsten.austclear.com.au>
X-Mailer: exmh version 2.1.1 10/15/1999
To: Ashby Gochenour <freebsd@intelos.net>
Cc: freebsd-questions@FreeBSD.ORG
Subject: Re: syslogd and cisco 
In-Reply-To: Message from Ashby Gochenour <freebsd@intelos.net> 
   of "Tue, 27 Mar 2001 14:14:51 EST." <Pine.GSO.4.21.0103271408090.29727-100000@flanders.intelos.net> 
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Date: Wed, 28 Mar 2001 14:45:16 +1000
From: Tony Landells <ahl@austclear.com.au>
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG


freebsd@intelos.net said:
> Running this did produce a log coming from the router that I saw
> through tcpdump. This still did not get logged to my router.log file.
> I've been watching this and see that UDP varies from 93 to 88 and
> back. Is this 93 and 88 a port or what does it signify? 

If you read the manual for tcpdump, you'll see that the 93 and 88
represent the amount of "user data" in the UDP packet.

The port numbers are attached to the IP addresses as the fifth number:

> 14:08:56.678016 0:2:fd:1:4c:a0 0:50:8b:c8:19:5d 0800
> 135: 192.168.50.193.1480 > 192.168.50.199.514:  udp 93

The above packet is from port 1480 of 192.168.50.193 to port 514
of 192.168.50.199.

> Any help at figuring out why I see the udp packet in tcpdump, but it is
> not logging to where I specify in syslogd?

Have you looked to see whether syslogd is logging any error messages?
Like, perhaps, that the file you want to log to doesn't exist?

Just a thought...

Tony
-- 
Tony Landells					<ahl@austclear.com.au>
Senior Network Engineer				Ph:  +61 3 9677 9319
Australian Clearing Services Pty Ltd		Fax: +61 3 9677 9355
Level 4, Rialto North Tower
525 Collins Street
Melbourne VIC 3000
Australia



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message