[logs] How to forward syslog message to a central syslog server using snort

• Previous message: Robert van den Breemen: "RE: [logs] Appliancebased Logging"
• Next in thread: Jeffrey F. Lawhorn: "Re: [logs] How to forward syslog message to a central syslog server using snort"
• Reply: Jeffrey F. Lawhorn: "Re: [logs] How to forward syslog message to a central syslog server using snort"
• Reply: Bennett Todd: "Re: [logs] How to forward syslog message to a central syslog server using snort"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hello!
            I have few network device that can`t be in my management network. I read about stealth logging using snort but it seem limited.
I can collect packet by port span (cisco). Snort get the syslog packet but I can't send the payload ( syslog message) with snort syslog output. The only thing I can do is to log the payload in a file. There is any tool that would read a file and send the content to a syslog server?  Any other suggestion
Thanks
 
Christian Heroux
 
 

_______________________________________________
LogAnalysis mailing list
LogAnalysisat_private
http://lists.shmoo.com/mailman/listinfo/loganalysis

• Next message: Daniele Muscetta: "RE: [logs] Appliancebased Logging"
• Previous message: Robert van den Breemen: "RE: [logs] Appliancebased Logging"
• Next in thread: Jeffrey F. Lawhorn: "Re: [logs] How to forward syslog message to a central syslog server using snort"
• Reply: Jeffrey F. Lawhorn: "Re: [logs] How to forward syslog message to a central syslog server using snort"
• Reply: Bennett Todd: "Re: [logs] How to forward syslog message to a central syslog server using snort"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Tue Mar 18 2003 - 14:22:48 PST