Installation via Devo repository
- Add the Devo repository to the system repository list. This only needs to be performed once.
Create the following file:
[logtrust] name=logtrust baseurl=http://repository.logtrust.net/rpms/ enabled=1 gpgcheck=1 gpgkey=http://repository.logtrust.net/PublicKey
Import the Devo public key. This only needs to be performed once.
sudo rpm --import http://repository.logtrust.net/PublicKey
Install the Devo packages using the following command:
sudo yum install logtrust-system logtrust-monitor
Configure the Devo packages using the following commands:
Update via Devo repository
To upgrade to the latest version of any Devo packages, follow the same procedure as for a normal distribution package. Below is an example for RPM-based distributions:
# yum --enablerepo=logtrust clean metadata # yum update logtrust-system # logtrust-system-configure
Installation via .rpm packages
Download the logtrust-system and logtrust-monitor packages found here:
Install the packages using the following commands:
sudo rpm -ivh logtrust-system-0.1-1.noarch.rpm
sudo rpm -ivh logtrust-monitor-0.1-1.noarch.rpm
Modifying the configuration of a Devo package
After the packages have been installed, you can access the configuration options by running the following commands.
Uninstalling a Devo package
Run one of these two commands to uninstall a Devo package:
yum erase logtrust-system
rpm -e logtrust-system
yum erase logtrust-monitor
rpm -e logtrust-monitor
- RHEL 6.3
Common errors in RHEL
- SELinux is enabled in enforcing mode by default. Run getenforce to check the status. Rsyslog is one of the processes protected by SELinux policy. On its initial configuration, it only allows sending data to port 514/udp.
- The SELinux policy must be modified to allow rsyslog to report its events to Devo. For more information, check out the syslog & SELinux configuration article.