Настроил удаленное логирование с роутера asus RT-N13U, в syslog-ng.conf прописал
source s_udp {
udp();
};
destination asus {
file("/var/log/asus.log");
};
filter f_asus {
host("192.168.0.1");
};
log {
source(s_udp);
filter(f_asus);
destination(asus);
};
14:30:51.443568 IP (tos 0x0, ttl 64, id 60714, offset 0, flags [DF], proto UDP (17), length 69)
192.168.0.1.2054 > 192.168.0.71.514: SYSLOG, length: 41
Facility user (1), Severity warning (4)
Msg: kernel: ip_table: set wan_name=eth2.2