4.x Nginx access log not configured

4ever_sunshine · 2024-02-28T07:16:09.131Z

Version 4.5.0
Firmware Type release8
Compile Time 2024-01-23 12:40:18 (UTC+00:00)

Nginx access.log not configured by default
no log rotate available on error log or access log

Access Log:

log_nginx_access1048×787 18.1 KB

Error Log:

log_nginx_error1045×784 62.7 KB

nginx conf:

nginx_conf1134×556 42.1 KB

What is the solution

SpitzAX3000 · 2024-02-29T00:05:26.971Z

replace the off with this:
/var/log/nginx/access.log

then
service nginx restart

You should now see a lot of access logs displayed.

4ever_sunshine · 2024-02-29T09:54:06.052Z

this help thanks your way

alzhao · 2024-02-29T10:23:27.050Z

There will be too much log then!

4ever_sunshine · 2024-02-29T11:07:14.270Z

idea is to use log rotation to counteract the issue

Are there any plans to implement either of these features? (enabling of log and log rotation)

Both are vital to security insights

4ever_sunshine · 2024-02-29T12:01:24.153Z

seems log mounted to tmp anyways

if tmp dumping setup properly this should be fine. Other option is remote log and flush log

for others possible to find the thread

root@{hostname}:~# df /var/log/nginx
Filesystem           1K-blocks      Used Available Use% Mounted on
tmpfs                   201148      1076    200072   1% /tmp

steep01 · 2024-03-01T04:56:01.132Z

For routers with usb or sd card storage, I configure sd card formatted as extroot, log_file option with logrotate. Here are the formulas

https://openwrt.org/docs/guide-user/additional-software/extroot_configuration
https://openwrt.org/docs/guide-user/base-system/log.essentials

SpitzAX3000 · 2024-03-01T11:30:57.292Z

4ever_sunshine:

enabling of log and log rotation

You can do it easily by yourself.

admon · 2024-03-01T11:47:14.302Z

Which isn’t really recommended because it will cause read / write on the flash. Since the flash isn’t replaceable it’s better to just save the logs into RAM or using a log server, if needed.

4ever_sunshine · 2024-03-01T16:37:57.880Z

SpitzAX3000:

4ever_sunshine:

enabling of log and log rotation

You can do it easily by yourself.

equal thought

but consumer router should enable

admon:

Which isn’t really recommended because it will cause read / write on the flash. Since the flash isn’t replaceable it’s better to just save the logs into RAM or using a log server, if needed.

point good

you reply below post yes?

steep01:

For routers with usb or sd card storage, I configure sd card formatted as extroot, log_file option with logrotate. Here are the formulas

https://openwrt.org/docs/guide-user/additional-software/extroot_configuration
[OpenWrt Wiki] Logging messages

formulas stand idea good

maybe no survival here formula good

steep01 · 2024-03-01T17:07:19.995Z

Correct. The default log location is /var which is /tmp. So after extroot, I changed log_file location like /usr/log so that it survives reboot.

4ever_sunshine · 2024-03-01T17:21:25.173Z

make perfect fact if need fix problems