环境:
srv1: 172.28.201.51
srv2: 172.28.201.52
srv3: 172.28.201.53
Rsyslog安装
[yemaosheng@srv1]# yum -y install rsyslog [yemaosheng@srv2]# yum -y install rsyslog [yemaosheng@srv3]# yum -y install rsyslog [yemaosheng@srv1]# vi /etc/rsyslog.conf #--------add---------- #UDP $modLoad imudp $UDPServerRun 514 #TCP #modLoad imtcp #$InputTCPServerRun 514 if $fromhost-ip startswith '172.28.201.52' then /var/log/172.28.201.52.log & ~ if $fromhost-ip startswith '172.28.201.53' then /var/log/172.28.201.53.log & ~ *.* /var/log/syslog.log [yemaosheng@srv2]# vi /etc/rsyslog.conf #--------add---------- #UDP *.* @172.28.201.51:514 #TCP #*.* @@172.28.201.51:514 |
Zabbix安装配置
安装过程详见官网手册:http://www.zabbix.com/documentation/2.0/manual/installation/install
注:
1.安装后进入界面如遇“Zabbix server is running”提示,关闭selinux即可。
2.Zabbix的界面中默认将Zabbix Server本身的监控项Disable了,要打开的话请到”Configuration”->”Hosts”->”Status”
Splunk配置
Splunk是一款商业软件,每天日志小于500MB是可以免费使用。
作为商业软件,其安装和配置做得非常方便,详见官网手册:http://docs.splunk.com/Documentation/Splunk/latest/Installation/InstallonLinux
(日志接收配置)
(为特定的PHP报错设置报警)