Security Basics mailing list archives
RE: Centralizing logs throug internet
From: "Shain Singh" <shain.singh () aapt com au>
Date: Thu, 16 Nov 2006 12:33:05 +1100
Nicolas Arias wrote:
Quick question, i have a few web servers facing internet,that are onlyaccesible throug that net. I want to point the logs fromthose boxes tomy syslog server, but i want to have some kind ofencryption. The thingis that in those boxes i have syslogd, and at my central box i have syslog-ng. Migrating syslogd to syslog-ng is not an option. So, ssh tunnels are out of order since syslogd only "talks" udp.
Are the webservers multi-homed so that you have a "management network" to reach your syslog server? You could run it through a L2TP session. The implementation would be something similar to how ISPs get RADIUS data from their upstream LNSes. Using this method at least you know that everything is initiated via the webserver to a dedicated termination point for your syslog server and once the tunnel is established you can run your traffic through it. -- Shaineel Singh MakePeace Media LTD http://mpm.org.au/shsingh pgp id: 0xA9D8D351 fp: 38 0D A8 C8 74 A2 33 5E CE 0E 5A FA D5 A0 04 7C This message was written entirely with recycled electrons. --------------------------------------------------------------------------- This list is sponsored by: Norwich University EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE The NSA has designated Norwich University a center of Academic Excellence in Information Security. Our program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Using interactive e-Learning technology, you can earn this esteemed degree, without disrupting your career or home life. http://www.msia.norwich.edu/secfocus ---------------------------------------------------------------------------
Current thread:
- File Integrity Monitor for Linux ? J.Bakshi (Nov 10)
- Centralizing logs throug internet Nicolas Arias (Nov 14)
- Re: Centralizing logs throug internet Ansgar -59cobalt- Wiechers (Nov 15)
- RE: Centralizing logs throug internet Maxime Ducharme (Nov 15)
- Re: Centralizing logs throug internet Florian Osses (Nov 15)
- RE: Centralizing logs throug internet Shain Singh (Nov 16)
- Message not available
- Message not available
- Re: Centralizing logs throug internet kevin fielder (Nov 15)
- Re: Centralizing logs throug internet Juergen Repolusk (Nov 16)
- Centralizing logs throug internet Nicolas Arias (Nov 14)