logs

Hi all,

After performing the followings, 

                ex4200>request system storage cleanup dry-run

                ex4200>request system storage cleanup

1-) >show log messages--------> Why does it give the following error.
                     error: could not resolve file: messages

2-) >show log interactive-commands show log interactive-commands ----->Working. It gives logs....no problem. All good

3-) >show log default-log-messages------------>Why it gives the following?
               Oct 3 17:04:21 EX_4200 newsyslog[66983]: logfile turned over due to -F request

4-) According to the current syslog, which are logs are sending to the log Server?

5-) Some syslog config under the groups, some under the system stanza. See below pls. Which one is not correct? Why can syslog be different stanzas?

The current config:

set groups SYSTEM1 system syslog user * any emergency
set groups SYSTEM1 system syslog host 10.10.130.100 any emergency
set groups SYSTEM1 system syslog host 10.10.130.100 authorization info
set groups SYSTEM1 system syslog host 10.10.130.100 firewall any
set groups SYSTEM1 system syslog host 10.10.130.1000 interactive-commands info
set groups SYSTEM1 system syslog file messages any notice
set groups SYSTEM1 system syslog file messages authorization info
set groups SYSTEM1 system syslog file interactive-commands interactive-commands any
set groups SYSTEM1 system syslog file emergency any emergency
set groups SYSTEM1 system syslog file firewall firewall notice
set groups SYSTEM1 system syslog file default-log-messages any any
set groups SYSTEM1 system syslog file default-log-messages structured-data
set groups SYSTEM1 system syslog file authorization authorization any
set system syslog file default-log-messages any any
set system syslog file default-log-messages match "(FRU Offline)|(FRU Online)|(FRU insertion)|(FRU power)|(FRU removal)|(commit complete)|(copying configuration to juniper.save)|(license add)|(license delete)|(link UP)|(package -X delete)|(package -X update)|(plugged in)|(requested 'commit synchronize' operation)|(requested 'commit' operation)|(unplugged)|Transferred|ifAdminStatus|transfer-file|transitioned|(Backup changed)|(Backup detected)|(Master Changed, Members Changed)|(Master Detected, Members Changed)|(Master Unchanged, Members Changed)|(Master changed)|(Master detected)|(interface vcp-)|(vc add)|(vc delete)|cm_device|(AIS_DATA_AVAILABLE)"
set system syslog file default-log-messages structured-data

set system apply-groups SYSTEM1

 file list /var/log/ detail

/var/log/:
total blocks: 3436
-rw-r--r--  1 root  wheel          0 Mar 4   2018 authd_libstats
-rw-r--r--  1 root  wheel          0 Mar 4   2018 authd_profilelib
-rw-r--r--  1 root  wheel          0 Mar 4   2018 authd_sdb.log
-rw-rw----  1 root  wheel      73854 Oct 4  09:50 authorization
-rw-rw----  1 root  wheel       4306 Oct 4  09:00 authorization.0.gz
-rw-rw----  1 root  wheel       3948 Oct 4  07:00 authorization.1.gz
-rw-rw----  1 root  wheel       4022 Oct 4  05:15 authorization.2.gz
-rw-rw----  1 root  wheel       4258 Oct 4  03:30 authorization.3.gz
-rw-rw----  1 root  wheel       4049 Oct 4  01:45 authorization.4.gz
-rw-rw----  1 root  wheel       4772 Oct 4  00:00 authorization.5.gz
-rw-rw----  1 root  wheel       4057 Oct 3  20:45 authorization.6.gz
-rw-rw----  1 root  wheel       4378 Oct 3  19:00 authorization.7.gz
-rw-rw----  1 root  wheel        324 Oct 3  17:04 authorization.8.gz
-rw-r-----  1 root  wheel      44088 Oct 4  09:08 chassisd
-rw-r--r--  1 root  wheel     141950 Jul 10 22:53 cosd
-rw-r-----  1 root  wheel     219711 Oct 3  10:38 dcd
-rw-rw----  1 root  wheel         84 Oct 3  17:04 default-log-messages
-rw-rw----  1 root  wheel        138 Oct 3  17:04 default-log-messages.0.gz
-rw-r--r--  1 root  wheel          0 Mar 4   2018 dfwc
-rw-r--r--  1 root  wheel     122540 Oct 4  09:50 dhcp
-rw-r--r--  1 root  wheel       6501 Oct 4  09:34 dhcp.0.gz
-rw-r--r--  1 root  wheel       6489 Oct 4  09:17 dhcp.1.gz
-rw-r-----  1 root  wheel          0 Mar 4   2018 eccd
-rw-rw----  1 root  wheel         84 Oct 3  17:04 emergency
-rw-rw----  1 root  wheel        127 Oct 3  17:04 emergency.0.gz
-rw-r-----  1 root  wheel     950465 Oct 4  03:26 erp-default
drwxrwxr-x  2 ext   ext          512 Mar 4   2018 ext/
-rw-rw----  1 root  wheel         84 Oct 3  17:04 firewall
-rw-rw----  1 root  wheel        126 Oct 3  17:04 firewall.0.gz
drwxrwxrwt  3 root  wheel        512 Mar 4   2018 flowc/
drwxrwxrwt  3 root  wheel        512 Mar 4   2018 ggsn/
-rw-r--r--  1 root  wheel      11710 Jul 10 22:53 gres-tp
-rw-r--r--  1 root  wheel       2790 Jul 10 22:53 httpd.log
-rw-rw----  1 root  wheel       7271 Oct 4  09:50 interactive-commands
-rw-rw----  1 root  wheel        805 Oct 3  17:04 interactive-commands.0.gz
-rw-r-----  1 root  wheel       7130 Jul 10 22:53 inventory
-rw-r-----  1 root  wheel          0 Mar 4   2018 license
-rw-r--r--  1 root  wheel       6220 Jul 10 22:53 license_subs_trace.log
-rw-r-----  1 root  wheel       1370 Jul 10 22:53 mastership
-rw-r--r--  1 root  wheel        480 Jul 10 22:51 pgmd
-rw-r--r--  1 root  wheel       5080 Jul 10 23:01 snapshot
-rw-rw-r--  1 root  wheel       4616 Oct 4  09:25 wtmp
-rw-rw-r--  1 root  wheel         27 Oct 3  17:01 wtmp.0.gz
total files: 40

{master:0}