rsyslog & loganalizer in OpenSUSE

1. Install OpenSUSE. So,I'm installed 13.2 with LXDE.
2. Install rsyslog rsyslog-module-mysql from standard repositories (and remove systemd logger in same time)
3.Install MariaDB, phpMyAdmin, Apache2, mod-php5, php-mysql, php5-gd from standard repositories.
4.Enable apache2, mysql, rsyslog in services.
5. Run "mysqladmin -u root password newpass"



6. Open http://localhost/phpMyAdmin/ with root/newpass and check that it is running.
7. In file /etc/rsyslog.d/remote.conf uncomment:
$ModLoad imudp.so
$UDPServerRun 514
8. Add "SYSLOG_REQUIRES_NETWORK=yes" in /etc/sysconfig/syslog
9.Enable syslog in firewall.
10. Check if syslog is listening -
netstat -l -n|grep 514
11. Check by sending message from another host -
logger -n serverIP -d -p local3.info "This is a test"
The message will appear in /var/log/messages
12. Run mysql -u root -p < /usr/share/doc/packages/rsyslog/mysql-createDB.sql 13. Add user syslog to mysql mysql -u root -p mysql>create user 'syslog'@'localhost' indentified by 'p@ssw0rd';
can change password -
mysql>use mysql;
mysql>update user set password=password('p@ssw0rd') where user='syslog';
and grant privileges to db -
mysql>GRANT ALL PRIVILEGES ON `Syslog`.* TO 'syslog'@'localhost' WITH GRANT OPTION;
14.Create ommysql.conf in /etc/rsyslog.d/ -

$ModLoad ommysql
*.* :ommysql:127.0.0.1,Syslog,syslog,PASSWORD

15. chmod 600 ommysql.conf
16. service rsyslog restart
17. Install latest version of loganaliyzer from http://http://loganalyzer.adiscon.com/downloads/
It requires apache2 and php5 - already installed.
Now current beta is http://download.adiscon.com/loganalyzer/loganalyzer-4.1.1.tar.gz
18. Unzip src directory to /srv/www/htdocs/LogAnalyzer.
19. Create empty config.php in the installation directory.
20. mysql -u root -p
mysql>create database LogAnalyser;
mysql>create user 'loganalyzer'@'localhost';
mysql>use mysql;
mysql>update user set password=password('p@ssw0rd') where user='loganalyzer';
mysql>GRANT ALL PRIVILEGES ON `LogAnalyzer`.* TO 'loganalyzer'@'localhost' WITH GRANT OPTION;
mysql>GRANT SELECT ON `Syslog`.* TO 'loganalyzer'@'localhost' WITH GRANT OPTION;
21. Open http://Loghost/LogAnalizer in browser and provide initial setup.
22. Set DB for personal settings - loganalyzer.
23. You if cannot enter to loganalyzer after install, use mysql client to update users table manually.
INSERT INTO `users` (`ID`, `username`, `password`, `is_admin`, `is_readonly`, `last_login`) VALUES (1,
'admin', '1a1dc91c907325c69271ddf0c944bc72', 1, 0,-1);
then use 'admin' and 'pass' as name and password.
24.Tune DB performance (mysql) - KEY `FromHost` (`FromHost`),KEY `SysLogTag` (`SysLogTag`),KEY `Facility` (`Facility`), KEY `ReceivedAt` (`ReceivedAt`), KEY `DeviceReportedTime` (`DeviceReportedTime`),KEY `ProcessID` (`ProcessID`), FULLTEXT KEY `Message` (`Message`)