|How to determine the Syslog Facility using Tcpdump|
|UNIX / Linux - General UNIX|
|Wednesday, 08 September 2010 20:10|
Each Syslog message contains a priority value. The priority value is enclosed within the characters < >. The priority value can be between 0 and 191 and consists of a Facility value and a Level value. Facility being the type of message, such as a kernel or mail message. And level being a severity level of the message.
To calculate the priority value the following formula is used : Priority = Facility * 8 + Level
So to determine the facility value of a syslog message we divide the priority value by 8. The remainder is the level value.
[root@logserver ~]# tcpdump -Xni eth0 port 514
Using the above example this would give us a facility of 17 (local1) and a level of 5 (notice).
0 Emergency: system is unusable
- Incapsula (Review) - How to Protect and Secure your website in 10 minutes
- Window wont show when using Cisco VPN Client 5.x / Windows 7
- How to Fix Unreadable Directory Listings within the Shell
- Python - List Comprehensions
- Python - What does 'if __name__ == "__main__"' mean ?
- Python - Decorators
- BIGIP F5 LTM - Action on Service Down
- Brocade ADX - How do I bind multiple ports to a single healthcheck ?
- MySQL - How to reset a forgotten Root password
- Django - How can I pass a string from a URL to a view ?
- Vyatta - Unable to log into GUI : "Username or password is incorrect"
- Cisco ASA - How do VPN Filters work ?
- How do I use AJAX along side Django ?
- Outlook 2010 - The 'Delete Conversation' Shortcut
- How do I import a python module from another folder ?
- How do I configure Django to serve my Robots.txt file ?
- Brocade ADX - The Dynamic Weighted Predictor
- How to serve multiple domains from within a single Django project
- Vyatta - How do I secure management access ?
- Vyatta - How to configure an IPSEC site to site VPN
- Proxy ARP – SPLAT
- Check Point Commands
- IPSO - Commands
- ASA 8.3 - Auto NAT Examples
- vSphere - Creating User and Group Permissions
- Configuring Wireless Connectivity within Backtrack 4 r2
- Juniper Netscreen Commands
- Configuring Windows 2008 R2 as an NTP Server
- How to set the Time / Date and Timezone in CentOS
- PEMU - Free Cisco PIX Firewall Emulator / Simulator
- Juniper Netscreen - NAT Explained
- How do I install snmpwalk / snmpget using Yum ?
- Troubleshooting a Netscreen Site 2 Site VPN
- Netscreen - NSRP
- Check Point Logging Troubleshooting Guide
- How do I configure IPv6 in Windows XP ?
- Check Point - How to Reset SIC
- Endpoint Connect Installation / Troubleshooting Guide
- VI shows the error Terminal too wide within Solaris
- ESX Convertor - The session is not authenticated