Re: Security Log Display
From: karl [x y] (jamescagney90210@excite.com)
Date: 07/31/02
- Next message: karl [x y]: "Re: Password Changed"
- Previous message: karl [x y]: "Re: IPSec Filter Question"
- In reply to: Chris: "Security Log Display"
- Next in thread: Eric Fitzgerald [MS]: "Re: Security Log Display"
- Reply: Eric Fitzgerald [MS]: "Re: Security Log Display"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "karl [x y]" <jamescagney90210@excite.com> Date: Wed, 31 Jul 2002 00:08:11 -0400
No, not without third party software or hardware e.g. a firewall, starting
at the low end with Sygate firewall software [free for non-commercial use,
or $30] or Netgear firewall starting at $70 US. If you spit both your
firewall logs and your windows log out [using I think NTsyslog] to a free
syslog client such as kiwi syslog service version from
www.kiwi-enterprises.com, then any failed login should be preceded by an
entry containing the IP address. I'm not sure this is possible with Sygate,
but is possible with hardware nat routers and firewalls like Netgear,
Linksys, etc.
"Chris" <cmoon@nospam.fas.harvard.edu> wrote in message
news:2fb101c23813$2f9c6d30$19ef2ecf@tkmsftngxa01...
> I have set up auditing on my Windows 2000 server.
> However, it seems that when there is a failed login
> attempt I get the workstation name that the attempt came
> from. Is there anyway to make it give me the IP
>
> Thanks
> Chris
- Next message: karl [x y]: "Re: Password Changed"
- Previous message: karl [x y]: "Re: IPSec Filter Question"
- In reply to: Chris: "Security Log Display"
- Next in thread: Eric Fitzgerald [MS]: "Re: Security Log Display"
- Reply: Eric Fitzgerald [MS]: "Re: Security Log Display"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
