True, you could use logger in a jam, like 'fw log -ftn | logger [options]', but you wouldn't do that across the Internet without encrypting, of course. As side note, with LEA, as problematic (read evil) as it can be, you gain: -encryption -authentication -some spoofing protection (it's TCP) Corey On Wed, 2002-12-11 at 16:45, Tina Bird wrote: > On Wed, 11 Dec 2002, Rainer Gerhards wrote: > > > A - hopefully easy - config question. I am currently searching for how > > to configure firewall one to report to syslog. The more search I do, the > > more I have the impression this is at least hard to do. Am I missing > > something obvious? > > > > I appreciate any response to the potentially silly question... Ah, yes, > > I don't have a FW-1 at hand, that is part of the problem ;) > > I'm working on configuration guides for a variety of devices, including > Cisco routers and FW-1 boxen, to talk to syslog. Rainer, I'll send you my > not-ready-for-prime-time notes on FW-1 off line. Bear in mind that > they're only good for FW-1 on UNIX...they depend on the UNIX "logger" > utility. > > tbird > > _______________________________________________ > LogAnalysis mailing list > LogAnalysisat_private > http://lists.shmoo.com/mailman/listinfo/loganalysis > _______________________________________________ LogAnalysis mailing list LogAnalysisat_private http://lists.shmoo.com/mailman/listinfo/loganalysis
This archive was generated by hypermail 2b30 : Thu Dec 12 2002 - 09:34:07 PST