Re: Windows DHCP to syslog

["Beechey, Jim" <beechey () NORTHWOOD EDU>]

Jason

I know that the SNARE Epilog Client has the ability to take text based log files and convert them to syslog.  DHCP is 
not one of the pre-defined log types, but there is a generic option which you might be able to get to work.  We looked 
into this as an option, but never tested, when we were looking at SIM solutions.  In the end our vendor of choice, 
Q1labs, has a proprietary client which provides this functionality.  

http://www.intersectalliance.com/projects/EpilogWindows/index.html

Hope this helps

Jim Beechey
Information Security Manager
Northwood University
4000 Whiting Drive
Midland, MI 48640
 
989-837-4169
beechey () northwood edu
www.northwood.edu
 
"Developing the future leaders of a global, free-enterprise society."

 

-----Original Message-----
From: Youngquist, Jason R. [mailto:jryoungquist () CCIS EDU] 
Sent: Friday, October 19, 2007 9:38 AM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] Windows DHCP to syslog

We migrated to a Windows DHCP server for our dorm network.  What I'd
like to be able to do is send the DHCP messages to a Linux syslog server
so I can have a historical record of which machine had a particular IP
address at a given time.  The DHCP events aren't stored in the Windows
Event Viewer.  I did a little googling, and couldn't find much.  I'm
open to any suggestions on how to accomplish this.

Thanks.
Jason Youngquist
Network Engineer - Security
Technology Services
Columbia College
1001 Rogers Street, Columbia, MO  65216
(573) 875-7334
jryoungquist () ccis edu
http://www.ccis.edu