1. дома
  2. Вопрос и ответ
  3. Использование Logrotate с Syslog-нг на Raspberry Pi (как удалить старые журналы?)

Использование Logrotate с Syslog-нг на Raspberry Pi (как удалить старые журналы?)

2014-03-12 2 views
0

Ok ..Использование Logrotate с Syslog-нг на Raspberry Pi (как удалить старые журналы?)

Я использую мой Raspberry Pi в качестве системного журнала сервера для Cisco ASA и маршрутизатором Cisco.

У меня есть журналы, заполняемые в моем/var/log/network destination. В настоящее время они регистрируются в формате: _ $ MONTH $ DAY $ YEAR.log, в качестве устройства - ROUTER или FIREWALL.

До сих пор его работала отлично! Я получаю журналы, разбитые на день как для моего маршрутизатора, так и для моего брандмауэра. Проблема в том, что я получаю довольно большие журналы ... довольно быстро из-за ASA.

Я новичок в logrotate..so это то, что я до сих пор:

В моей /etc/logrotate.d/syslog-ng директории ...

/var/log/network/*.log* 
    { 
    rotate 5 
    }

Для глобальные параметры в файле logrotate.conf:

[email protected]:/etc$ more logrotate.conf 
# see "man logrotate" for details 
# rotate log files weekly 
weekly 

# keep 4 weeks worth of backlogs 
rotate 4 

# create new (empty) log files after rotating old ones 
create 

# uncomment this if you want your log files compressed 
#compress 

# packages drop log rotation information into this directory 
include /etc/logrotate.d 

# no packages own wtmp, or btmp -- we'll rotate them here 
/var/log/wtmp { 
missingok 
monthly 
create 0664 root utmp 
rotate 1 
} 

/var/log/btmp { 
missingok 
monthly 
create 0660 root utmp 
rotate 1 
}

Теперь ... если я пытаюсь заставить LogRotate бежать:

sudo logrotate /etc/logrotate.d -v

Вместо удаления файлов старше 5 дней (на основе циклического сдвига 5 команд) .. Я получаю это:

[email protected]:/etc$ sudo ls /var/log/network 
FIREWALL_03052014.log    FIREWALL_03072014.log     FIREWALL_03092014.log.1.1.1.1.1.1 FIREWALL_03122014.log.1.1.1.1.1.1 
FIREWALL_03052014.log.1.1.1.1.1.1 FIREWALL_03072014.log.1.1.1.1.1.1  FIREWALL_03102014.log.1.1.1.1.1.1 ROUTER_03082014.log 
FIREWALL_03062014.log    FIREWALL_03082014.log     FIREWALL_03112014.log.1.1.1.1.1.1

FIREWALL_03062014.log.1.1.1.1.1.1 FIREWALL_03082014.log.1.1.1.1. 1,1 FIREWALL_03122014.log

Если это поможет, то вывод команды "Logrotate /etc/logrotate.d -v" говорит следующее:

[email protected]:/etc/logrotate.d$ sudo logrotate /etc/logrotate.d/syslog-ng -v 
[sudo] password for admin: 
reading config file /etc/logrotate.d/syslog-ng 

Handling 1 logs 

rotating pattern: /var/log/network/*.log* 
1048576 bytes (5 rotations) 
empty log files are rotated, old logs are removed 
considering log /var/log/network/FIREWALL_03052014.log 
    log does not need rotating 
considering log /var/log/network/FIREWALL_03052014.log.1.1.1.1.1 
    log needs rotating 
considering log /var/log/network/FIREWALL_03062014.log 
    log does not need rotating 
considering log /var/log/network/FIREWALL_03062014.log.1.1.1.1.1 
    log needs rotating 
considering log /var/log/network/FIREWALL_03072014.log 
    log does not need rotating 
considering log /var/log/network/FIREWALL_03072014.log.1.1.1.1.1 
    log needs rotating 
considering log /var/log/network/FIREWALL_03082014.log 
    log does not need rotating 
considering log /var/log/network/FIREWALL_03082014.log.1.1.1.1.1 
    log needs rotating 
considering log /var/log/network/FIREWALL_03092014.log.1.1.1.1.1 
    log needs rotating 
considering log /var/log/network/FIREWALL_03102014.log.1.1.1.1.1 
    log needs rotating 
considering log /var/log/network/FIREWALL_03112014.log.1.1.1.1.1 
    log needs rotating 
considering log /var/log/network/FIREWALL_03122014.log 
    log does not need rotating 
considering log /var/log/network/FIREWALL_03122014.log.1.1.1.1.1 
    log needs rotating 
considering log /var/log/network/ROUTER_03082014.log 
    log does not need rotating 
rotating log /var/log/network/FIREWALL_03052014.log.1.1.1.1.1, log->rotateCount is 5 
dateext suffix '-20140312' 
glob pattern '-[0-9][0-9][0-9][0-9][0-9][0-9][0-9][0-9]' 
renaming /var/log/network/FIREWALL_03052014.log.1.1.1.1.1.5 to /var/log/network/FIREWALL_03052014.log.1.1.1.1.1.6 (rotatecount 5, logstart 1, i 5), 
old log /var/log/network/FIREWALL_03052014.log.1.1.1.1.1.5 does not exist 
renaming /var/log/network/FIREWALL_03052014.log.1.1.1.1.1.4 to /var/log/network/FIREWALL_03052014.log.1.1.1.1.1.5 (rotatecount 5, logstart 1, i 4), 
old log /var/log/network/FIREWALL_03052014.log.1.1.1.1.1.4 does not exist 
renaming /var/log/network/FIREWALL_03052014.log.1.1.1.1.1.3 to /var/log/network/FIREWALL_03052014.log.1.1.1.1.1.4 (rotatecount 5, logstart 1, i 3), 
old log /var/log/network/FIREWALL_03052014.log.1.1.1.1.1.3 does not exist 
renaming /var/log/network/FIREWALL_03052014.log.1.1.1.1.1.2 to /var/log/network/FIREWALL_03052014.log.1.1.1.1.1.3 (rotatecount 5, logstart 1, i 2), 
old log /var/log/network/FIREWALL_03052014.log.1.1.1.1.1.2 does not exist 
renaming /var/log/network/FIREWALL_03052014.log.1.1.1.1.1.1 to /var/log/network/FIREWALL_03052014.log.1.1.1.1.1.2 (rotatecount 5, logstart 1, i 1), 
old log /var/log/network/FIREWALL_03052014.log.1.1.1.1.1.1 does not exist 
renaming /var/log/network/FIREWALL_03052014.log.1.1.1.1.1.0 to /var/log/network/FIREWALL_03052014.log.1.1.1.1.1.1 (rotatecount 5, logstart 1, i 0), 
old log /var/log/network/FIREWALL_03052014.log.1.1.1.1.1.0 does not exist 
log /var/log/network/FIREWALL_03052014.log.1.1.1.1.1.6 doesn't exist -- won't try to dispose of it 
renaming /var/log/network/FIREWALL_03052014.log.1.1.1.1.1 to /var/log/network/FIREWALL_03052014.log.1.1.1.1.1.1 
rotating log /var/log/network/FIREWALL_03062014.log.1.1.1.1.1, log->rotateCount is 5 
dateext suffix '-20140312' 
glob pattern '-[0-9][0-9][0-9][0-9][0-9][0-9][0-9][0-9]' 
renaming /var/log/network/FIREWALL_03062014.log.1.1.1.1.1.5 to /var/log/network/FIREWALL_03062014.log.1.1.1.1.1.6 (rotatecount 5, logstart 1, i 5), 
old log /var/log/network/FIREWALL_03062014.log.1.1.1.1.1.5 does not exist 
renaming /var/log/network/FIREWALL_03062014.log.1.1.1.1.1.4 to /var/log/network/FIREWALL_03062014.log.1.1.1.1.1.5 (rotatecount 5, logstart 1, i 4), 
old log /var/log/network/FIREWALL_03062014.log.1.1.1.1.1.4 does not exist 
renaming /var/log/network/FIREWALL_03062014.log.1.1.1.1.1.3 to /var/log/network/FIREWALL_03062014.log.1.1.1.1.1.4 (rotatecount 5, logstart 1, i 3), 
old log /var/log/network/FIREWALL_03062014.log.1.1.1.1.1.3 does not exist 
renaming /var/log/network/FIREWALL_03062014.log.1.1.1.1.1.2 to /var/log/network/FIREWALL_03062014.log.1.1.1.1.1.3 (rotatecount 5, logstart 1, i 2), 
old log /var/log/network/FIREWALL_03062014.log.1.1.1.1.1.2 does not exist 
renaming /var/log/network/FIREWALL_03062014.log.1.1.1.1.1.1 to /var/log/network/FIREWALL_03062014.log.1.1.1.1.1.2 (rotatecount 5, logstart 1, i 1), 
old log /var/log/network/FIREWALL_03062014.log.1.1.1.1.1.1 does not exist 
renaming /var/log/network/FIREWALL_03062014.log.1.1.1.1.1.0 to /var/log/network/FIREWALL_03062014.log.1.1.1.1.1.1 (rotatecount 5, logstart 1, i 0), 
old log /var/log/network/FIREWALL_03062014.log.1.1.1.1.1.0 does not exist 
log /var/log/network/FIREWALL_03062014.log.1.1.1.1.1.6 doesn't exist -- won't try to dispose of it 
renaming /var/log/network/FIREWALL_03062014.log.1.1.1.1.1 to /var/log/network/FIREWALL_03062014.log.1.1.1.1.1.1 
rotating log /var/log/network/FIREWALL_03072014.log.1.1.1.1.1, log->rotateCount is 5 
dateext suffix '-20140312' 
glob pattern '-[0-9][0-9][0-9][0-9][0-9][0-9][0-9][0-9]' 
renaming /var/log/network/FIREWALL_03072014.log.1.1.1.1.1.5 to /var/log/network/FIREWALL_03072014.log.1.1.1.1.1.6 (rotatecount 5, logstart 1, i 5), 
old log /var/log/network/FIREWALL_03072014.log.1.1.1.1.1.5 does not exist 
renaming /var/log/network/FIREWALL_03072014.log.1.1.1.1.1.4 to /var/log/network/FIREWALL_03072014.log.1.1.1.1.1.5 (rotatecount 5, logstart 1, i 4), 
old log /var/log/network/FIREWALL_03072014.log.1.1.1.1.1.4 does not exist 
renaming /var/log/network/FIREWALL_03072014.log.1.1.1.1.1.3 to /var/log/network/FIREWALL_03072014.log.1.1.1.1.1.4 (rotatecount 5, logstart 1, i 3), 
old log /var/log/network/FIREWALL_03072014.log.1.1.1.1.1.3 does not exist 
renaming /var/log/network/FIREWALL_03072014.log.1.1.1.1.1.2 to /var/log/network/FIREWALL_03072014.log.1.1.1.1.1.3 (rotatecount 5, logstart 1, i 2), 
old log /var/log/network/FIREWALL_03072014.log.1.1.1.1.1.2 does not exist 
renaming /var/log/network/FIREWALL_03072014.log.1.1.1.1.1.1 to /var/log/network/FIREWALL_03072014.log.1.1.1.1.1.2 (rotatecount 5, logstart 1, i 1), 
old log /var/log/network/FIREWALL_03072014.log.1.1.1.1.1.1 does not exist 
renaming /var/log/network/FIREWALL_03072014.log.1.1.1.1.1.0 to /var/log/network/FIREWALL_03072014.log.1.1.1.1.1.1 (rotatecount 5, logstart 1, i 0), 
old log /var/log/network/FIREWALL_03072014.log.1.1.1.1.1.0 does not exist 
log /var/log/network/FIREWALL_03072014.log.1.1.1.1.1.6 doesn't exist -- won't try to dispose of it 
renaming /var/log/network/FIREWALL_03072014.log.1.1.1.1.1 to /var/log/network/FIREWALL_03072014.log.1.1.1.1.1.1 
rotating log /var/log/network/FIREWALL_03082014.log.1.1.1.1.1, log->rotateCount is 5 
dateext suffix '-20140312' 
glob pattern '-[0-9][0-9][0-9][0-9][0-9][0-9][0-9][0-9]' 
renaming /var/log/network/FIREWALL_03082014.log.1.1.1.1.1.5 to /var/log/network/FIREWALL_03082014.log.1.1.1.1.1.6 (rotatecount 5, logstart 1, i 5), 
old log /var/log/network/FIREWALL_03082014.log.1.1.1.1.1.5 does not exist 
renaming /var/log/network/FIREWALL_03082014.log.1.1.1.1.1.4 to /var/log/network/FIREWALL_03082014.log.1.1.1.1.1.5 (rotatecount 5, logstart 1, i 4), 
old log /var/log/network/FIREWALL_03082014.log.1.1.1.1.1.4 does not exist 
renaming /var/log/network/FIREWALL_03082014.log.1.1.1.1.1.3 to /var/log/network/FIREWALL_03082014.log.1.1.1.1.1.4 (rotatecount 5, logstart 1, i 3), 
old log /var/log/network/FIREWALL_03082014.log.1.1.1.1.1.3 does not exist 
renaming /var/log/network/FIREWALL_03082014.log.1.1.1.1.1.2 to /var/log/network/FIREWALL_03082014.log.1.1.1.1.1.3 (rotatecount 5, logstart 1, i 2), 
old log /var/log/network/FIREWALL_03082014.log.1.1.1.1.1.2 does not exist 
renaming /var/log/network/FIREWALL_03082014.log.1.1.1.1.1.1 to /var/log/network/FIREWALL_03082014.log.1.1.1.1.1.2 (rotatecount 5, logstart 1, i 1), 
old log /var/log/network/FIREWALL_03082014.log.1.1.1.1.1.1 does not exist 
renaming /var/log/network/FIREWALL_03082014.log.1.1.1.1.1.0 to /var/log/network/FIREWALL_03082014.log.1.1.1.1.1.1 (rotatecount 5, logstart 1, i 0), 
old log /var/log/network/FIREWALL_03082014.log.1.1.1.1.1.0 does not exist 
log /var/log/network/FIREWALL_03082014.log.1.1.1.1.1.6 doesn't exist -- won't try to dispose of it 
renaming /var/log/network/FIREWALL_03082014.log.1.1.1.1.1 to /var/log/network/FIREWALL_03082014.log.1.1.1.1.1.1 
rotating log /var/log/network/FIREWALL_03092014.log.1.1.1.1.1, log->rotateCount is 5 
dateext suffix '-20140312' 
glob pattern '-[0-9][0-9][0-9][0-9][0-9][0-9][0-9][0-9]' 
renaming /var/log/network/FIREWALL_03092014.log.1.1.1.1.1.5 to /var/log/network/FIREWALL_03092014.log.1.1.1.1.1.6 (rotatecount 5, logstart 1, i 5), 
old log /var/log/network/FIREWALL_03092014.log.1.1.1.1.1.5 does not exist 
renaming /var/log/network/FIREWALL_03092014.log.1.1.1.1.1.4 to /var/log/network/FIREWALL_03092014.log.1.1.1.1.1.5 (rotatecount 5, logstart 1, i 4), 
old log /var/log/network/FIREWALL_03092014.log.1.1.1.1.1.4 does not exist 
renaming /var/log/network/FIREWALL_03092014.log.1.1.1.1.1.3 to /var/log/network/FIREWALL_03092014.log.1.1.1.1.1.4 (rotatecount 5, logstart 1, i 3), 
old log /var/log/network/FIREWALL_03092014.log.1.1.1.1.1.3 does not exist 
renaming /var/log/network/FIREWALL_03092014.log.1.1.1.1.1.2 to /var/log/network/FIREWALL_03092014.log.1.1.1.1.1.3 (rotatecount 5, logstart 1, i 2), 
old log /var/log/network/FIREWALL_03092014.log.1.1.1.1.1.2 does not exist 
renaming /var/log/network/FIREWALL_03092014.log.1.1.1.1.1.1 to /var/log/network/FIREWALL_03092014.log.1.1.1.1.1.2 (rotatecount 5, logstart 1, i 1), 
old log /var/log/network/FIREWALL_03092014.log.1.1.1.1.1.1 does not exist 
renaming /var/log/network/FIREWALL_03092014.log.1.1.1.1.1.0 to /var/log/network/FIREWALL_03092014.log.1.1.1.1.1.1 (rotatecount 5, logstart 1, i 0), 
old log /var/log/network/FIREWALL_03092014.log.1.1.1.1.1.0 does not exist 
log /var/log/network/FIREWALL_03092014.log.1.1.1.1.1.6 doesn't exist -- won't try to dispose of it 
renaming /var/log/network/FIREWALL_03092014.log.1.1.1.1.1 to /var/log/network/FIREWALL_03092014.log.1.1.1.1.1.1 
rotating log /var/log/network/FIREWALL_03102014.log.1.1.1.1.1, log->rotateCount is 5 
dateext suffix '-20140312' 
glob pattern '-[0-9][0-9][0-9][0-9][0-9][0-9][0-9][0-9]' 
renaming /var/log/network/FIREWALL_03102014.log.1.1.1.1.1.5 to /var/log/network/FIREWALL_03102014.log.1.1.1.1.1.6 (rotatecount 5, logstart 1, i 5), 
old log /var/log/network/FIREWALL_03102014.log.1.1.1.1.1.5 does not exist 
renaming /var/log/network/FIREWALL_03102014.log.1.1.1.1.1.4 to /var/log/network/FIREWALL_03102014.log.1.1.1.1.1.5 (rotatecount 5, logstart 1, i 4), 
old log /var/log/network/FIREWALL_03102014.log.1.1.1.1.1.4 does not exist 
renaming /var/log/network/FIREWALL_03102014.log.1.1.1.1.1.3 to /var/log/network/FIREWALL_03102014.log.1.1.1.1.1.4 (rotatecount 5, logstart 1, i 3), 
old log /var/log/network/FIREWALL_03102014.log.1.1.1.1.1.3 does not exist 
renaming /var/log/network/FIREWALL_03102014.log.1.1.1.1.1.2 to /var/log/network/FIREWALL_03102014.log.1.1.1.1.1.3 (rotatecount 5, logstart 1, i 2), 
old log /var/log/network/FIREWALL_03102014.log.1.1.1.1.1.2 does not exist 
renaming /var/log/network/FIREWALL_03102014.log.1.1.1.1.1.1 to /var/log/network/FIREWALL_03102014.log.1.1.1.1.1.2 (rotatecount 5, logstart 1, i 1), 
old log /var/log/network/FIREWALL_03102014.log.1.1.1.1.1.1 does not exist 
renaming /var/log/network/FIREWALL_03102014.log.1.1.1.1.1.0 to /var/log/network/FIREWALL_03102014.log.1.1.1.1.1.1 (rotatecount 5, logstart 1, i 0), 
old log /var/log/network/FIREWALL_03102014.log.1.1.1.1.1.0 does not exist 
log /var/log/network/FIREWALL_03102014.log.1.1.1.1.1.6 doesn't exist -- won't try to dispose of it 
renaming /var/log/network/FIREWALL_03102014.log.1.1.1.1.1 to /var/log/network/FIREWALL_03102014.log.1.1.1.1.1.1 
rotating log /var/log/network/FIREWALL_03112014.log.1.1.1.1.1, log->rotateCount is 5 
dateext suffix '-20140312' 
glob pattern '-[0-9][0-9][0-9][0-9][0-9][0-9][0-9][0-9]' 
renaming /var/log/network/FIREWALL_03112014.log.1.1.1.1.1.5 to /var/log/network/FIREWALL_03112014.log.1.1.1.1.1.6 (rotatecount 5, logstart 1, i 5), 
old log /var/log/network/FIREWALL_03112014.log.1.1.1.1.1.5 does not exist 
renaming /var/log/network/FIREWALL_03112014.log.1.1.1.1.1.4 to /var/log/network/FIREWALL_03112014.log.1.1.1.1.1.5 (rotatecount 5, logstart 1, i 4), 
old log /var/log/network/FIREWALL_03112014.log.1.1.1.1.1.4 does not exist 
renaming /var/log/network/FIREWALL_03112014.log.1.1.1.1.1.3 to /var/log/network/FIREWALL_03112014.log.1.1.1.1.1.4 (rotatecount 5, logstart 1, i 3), 
old log /var/log/network/FIREWALL_03112014.log.1.1.1.1.1.3 does not exist 
renaming /var/log/network/FIREWALL_03112014.log.1.1.1.1.1.2 to /var/log/network/FIREWALL_03112014.log.1.1.1.1.1.3 (rotatecount 5, logstart 1, i 2), 
old log /var/log/network/FIREWALL_03112014.log.1.1.1.1.1.2 does not exist 
renaming /var/log/network/FIREWALL_03112014.log.1.1.1.1.1.1 to /var/log/network/FIREWALL_03112014.log.1.1.1.1.1.2 (rotatecount 5, logstart 1, i 1), 
old log /var/log/network/FIREWALL_03112014.log.1.1.1.1.1.1 does not exist 
renaming /var/log/network/FIREWALL_03112014.log.1.1.1.1.1.0 to /var/log/network/FIREWALL_03112014.log.1.1.1.1.1.1 (rotatecount 5, logstart 1, i 0), 
old log /var/log/network/FIREWALL_03112014.log.1.1.1.1.1.0 does not exist 
log /var/log/network/FIREWALL_03112014.log.1.1.1.1.1.6 doesn't exist -- won't try to dispose of it 
renaming /var/log/network/FIREWALL_03112014.log.1.1.1.1.1 to /var/log/network/FIREWALL_03112014.log.1.1.1.1.1.1 
rotating log /var/log/network/FIREWALL_03122014.log.1.1.1.1.1, log->rotateCount is 5 
dateext suffix '-20140312' 
glob pattern '-[0-9][0-9][0-9][0-9][0-9][0-9][0-9][0-9]' 
renaming /var/log/network/FIREWALL_03122014.log.1.1.1.1.1.5 to /var/log/network/FIREWALL_03122014.log.1.1.1.1.1.6 (rotatecount 5, logstart 1, i 5), 
old log /var/log/network/FIREWALL_03122014.log.1.1.1.1.1.5 does not exist 
renaming /var/log/network/FIREWALL_03122014.log.1.1.1.1.1.4 to /var/log/network/FIREWALL_03122014.log.1.1.1.1.1.5 (rotatecount 5, logstart 1, i 4), 
old log /var/log/network/FIREWALL_03122014.log.1.1.1.1.1.4 does not exist 
renaming /var/log/network/FIREWALL_03122014.log.1.1.1.1.1.3 to /var/log/network/FIREWALL_03122014.log.1.1.1.1.1.4 (rotatecount 5, logstart 1, i 3), 
old log /var/log/network/FIREWALL_03122014.log.1.1.1.1.1.3 does not exist 
renaming /var/log/network/FIREWALL_03122014.log.1.1.1.1.1.2 to /var/log/network/FIREWALL_03122014.log.1.1.1.1.1.3 (rotatecount 5, logstart 1, i 2), 
old log /var/log/network/FIREWALL_03122014.log.1.1.1.1.1.2 does not exist 
renaming /var/log/network/FIREWALL_03122014.log.1.1.1.1.1.1 to /var/log/network/FIREWALL_03122014.log.1.1.1.1.1.2 (rotatecount 5, logstart 1, i 1), 
old log /var/log/network/FIREWALL_03122014.log.1.1.1.1.1.1 does not exist 
renaming /var/log/network/FIREWALL_03122014.log.1.1.1.1.1.0 to /var/log/network/FIREWALL_03122014.log.1.1.1.1.1.1 (rotatecount 5, logstart 1, i 0), 
old log /var/log/network/FIREWALL_03122014.log.1.1.1.1.1.0 does not exist 
log /var/log/network/FIREWALL_03122014.log.1.1.1.1.1.6 doesn't exist -- won't try to dispose of it 
renaming /var/log/network/FIREWALL_03122014.log.1.1.1.1.1 to /var/log/network/FIREWALL_03122014.log.1.1.1.1.1.1

источник

2014-03-12 kbarnes

+0

Может быть, вы получите ответ на http://raspberrypi.stackexchange.com/ –

ответ

0

Попытка удалить косую звездочку:

От

/var/log/network/*.log*

Для

/var/log/network/*.log

источник

2014-10-01 08:44:43 Neo

 Смежные вопросы

  • Нет связанных вопросов^_^