do you have some sort of filtering for ip addresses on the syslog daemon
you're running? Ive used backlog before although it gets buggy when you have
a lot of events being sent out from the server. You'll get out of memory
resources once in a while...

-----Original Message-----
From: H C [mailto:keydet89yahoo.com]
Sent: Friday, April 05, 2002 6:24 AM
To: focus-mssecurityfocus.com
Subject: Using syslog clients

I'm using a couple of test systems to determine the
suitability of converting NT/2K EventLog to syslog.

I've used Kiwi's Syslog Daemon before, and have that
running on a system. I've installed BackLog on one
test system, and NTSyslog on another.

When I installed the syslog clients, I first backed up
and cleared the EventLogs, then installed and
activated the clients. However, the EventLogs on both
test clients have received new entries, and they
aren't being sent to the syslog server.

Does anyone have any thoughts as to why? Neither
client came with detailed installation instructions.

Thanks

__________________________________________________
Do You Yahoo!?
Yahoo! Tax Center - online filing with TurboTax
http://taxes.yahoo.com/

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]