Screen OS

Hello ,

I have  configured my netscreen FW to send syslog messages to sunsolaris server , but i got this message on the FW :

Syslog cannot connect to the TCP server 10.1.1.10 ; the connection is closed

could you please help on this ?

PS: syslog is configred to use udp port 514 , why the message is considering tcp connection ?

thanks .

Adel .

Hi Adel

there is the same topic 

http://forums.juniper.net/jnet/board/message?board.id=Firewalls&thread.id=9923

AND COULD YOU DO 

Firewall >get  syslog

you should see 

get syslog
Syslog Configuration:

        Hostname: 1.1.1.1
        Host port: 514
        Security Facility: local0
        Facility: local0
        Traffic log: enabled
        Event log: enabled
        IDP log: disabled
        Transport: udp  <<<<<<<<<<<<<<<<
        Socket number: 2057

        module=system:  emer, alert, crit, error, warn, notif, info, debug

Syslog is enabled.

for configuring Syslog on firewall 

set syslog config "1.1.1.1"
set syslog config "1.1.1.1" facilities local0 local0
set syslog config "1.1.1.1" log traffic
set syslog enable
 

hope help you 

Hi Mehdi ,

thanks a lot ,

when i did the command get syslog , the transport is tcp not udp . how can I change it .

best regards

Adel ,

hi Abdule

go Configuration > Report Settings > Syslog and uncheck TCP 

OR CLI 

unset syslog config "IP/hostname"" transport

hope help you 

thanks 

Hi Mehdi ,

thanks a lot , it is working fine 🙂

best regards

Adel ,