Last night I found that all current log files were empty (0 bytes).
I restarted syslog-ng (/etc/rc.d/syslogng restart) and things started working again.
I looked in the log archives and found this in the system log:
2013:05:06-23:57:59 fw syslog-ng[2628]: Termination requested via signal, terminating;
2013:05:06-23:57:59 fw syslog-ng[2628]: syslog-ng shutting down; version='3.0.10'
Those are the last entries in the system log before they went empty.
Any other logs I should check?
The 'logging' log doesn't have anything after 2013:05:06-00:00:16, when it had some 'logcleaner' messages:
fw:/var/log/logging/2013/05 # zcat logging-2013-05-06.log.gz
2013:05:06-00:00:07 fw logarchiver[19892]: INFO: * checking log files ...
2013:05:06-00:00:07 fw logarchiver[19892]: INFO: * archiving files ...
2013:05:06-00:00:14 fw logarchiver[19892]: INFO: * storing files on remote storage ...
2013:05:06-00:00:14 fw logarchiver[19892]: INFO: -> no files to transmit
2013:05:06-00:00:14 fw logarchiver[19892]: INFO: * processing ARM configuration ...
2013:05:06-00:00:14 fw logarchiver[19892]: INFO: no ARM config, skipping ARM section
2013:05:06-00:00:14 fw logarchiver[19892]: INFO: skipping ARM section - no configuration found
2013:05:06-00:00:15 fw logcleaner[19973]: INFO: Activated time dependent deletion! (keeping 365 days)
2013:05:06-00:00:16 fw logcleaner[19973]: INFO: * deleted 11 files and/or directories
Thanks,
Barry
This thread was automatically locked due to age.
