From the course: Red Hat Certified System Administrator (EX200) Cert Prep: 1 Deploy, Configure, and Manage (2021)

Unlock the full course today

Join today to access over 22,400 courses taught by industry experts or purchase this course individually.

Locate and interpret system log files

Locate and interpret system log files

- [Instructor] Log files are files that contain messages about the system. These messages would pertain to the kernel, services, or applications. There are different logs for different tasks. For instance, there's a log that keeps track of failed logins. There's another log just for cron jobs and so on. Enterprise Linux has two logging systems. Rsyslog and journald. Rsyslog is compatible to legacy sysklogd and handles persistent logs. Rsyslog either logs the text files on the local machine, or it logs across the network to remote logging server using either TCP or UDP protocols. Journald, however, is part of systemd and is not persistent by default, so the journal logs don't survive a reboot. Since the journal is binary, and it's only stored in RAM, it's very fast to write to and very fast for us to search through. To ensure rsyslog log is running, we can use systemctl. Type in sudo space systemctl space start space…

Contents