Re: [fw-wiz] Centrallizing logs

From: m p (sumirati@yahoo.de)
Date: 09/13/02 

From: m p <sumirati@yahoo.de>
To: Rudy_D_Pereda@mail.dbf.state.fl.us
Date: Fri Sep 13 07:51:01 2002

 --- Rudy_D_Pereda@mail.dbf.state.fl.us schrieb: >
> MP,
> Couldn't be that lucky, we still run IIS(4). On the NT side, have you used
> any software to redirect NT event logs to a syslog server?
>
> And thanks for your 2 cents. much appreciated.
>
> rdp
>
>

Unfortunely not. I'm getting the logs in a nightly ftp job to our main log
server [1], convert them to the format I need (via a perl script) and compress
both versions for archiving. They sit there until a job every month does the
reports.

As for the hint to the tool (I think www.sysinternals.com offers a free
version) to send the system log of NT via syslog to a logging host: IIS 4 does
not report to the system log of NT.

Because that is slighty off-topic for a firewall list, please send all other
questions in private mail only.

Thanks,

Marc

[1] The log server is sitting in a private DMZ and is requesting each night the
logs from 3 different server farms. I thought about cygwin on the machines to
get better tools to work with. But since I hardened the machines and killed
POSIX, OS/2 and 16-bit support - why should I reintroduce some services not
needed for the job as a webserver? FTP, HTTP and VNC (from the inside only) is
more than enough if you are on a M$ based plattform.

__________________________________________________________________

Gesendet von Yahoo! Mail - http://mail.yahoo.de
Möchten Sie mit einem Gruß antworten? http://grusskarten.yahoo.de

Relevant Pages

  • Performance optimization vs satisficing (was Language Oriented Programming)
    ... >machines that were too small. ... Microsoft has been a leading offender here. ... >arcane issue for server engines. ... magnitude slower, yes, I recall working on a 200mb database, trying to ...
    (comp.object)
  • Re: Should I install Certificate Authority to solve these problems ?
    ... You can use IPsec with or without certs from your PKI. ... negotiations to your AD machines or those trusting the ... > In the item 1 below, the tool in use is a HP server management tool (type ... >>> Management is pushing to get Certificate Authority ...
    (microsoft.public.win2000.security)
  • Re: network slows down after SP2 install
    ... the machines updated from W2K still open and read the ... Locate the "Microsoft network server: ... Install SP2 for WIN XP and latest service pack for Office 2003 on ... Microsoft CSS Online Newsgroup Support ...
    (microsoft.public.windows.server.sbs)
  • Re: network slows down after SP2 install
    ... These machines cannot even run the program locally being disconnected from the server with a local copy of the database. ... Install SP2 for WIN XP and latest service pack for Office 2003 on ... Microsoft CSS Online Newsgroup Support ...
    (microsoft.public.windows.server.sbs)
  • Re: SBS 2003 Win XP/2000 Pro Clients TCP/IP Problems
    ... network and no DHCP services provided by any machines still on the network. ... Check all machines for DNS entries. ... It really sounds like a IP Address conflict the way the server stops ... > PCs, 3 of which are running Windows XP Pro, the rest 2000 Pro. ...
    (microsoft.public.windows.server.sbs)