Re: logging windows text-based files to central logging server

[Aaron Wade <agw8 () CORNELL EDU>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Michael,
I use epilog for Windows boxes, and log to a syslog-ng system.  Syslog-NG
handles the rotation for me.  I'm considering a splunk purchase for
processing or aanval's syslog correlation engine.
HTH
- -Aaron


- --
Aaron Wade, CCE
IT Security & Infrastructure
Engineering Information Technologies
Cornell University


On Friday 27 July 2007 10:33 am, Michael Bayne wrote:
> We have a number of windows applications logging to text-based log files
> (IIS, apache, app servers, etc).  We'd like to get these logs off of the
> windows servers and onto our central syslog server and CS-MARS device in
> a (near) real-time manner. So far, I haven't been able to find a tool to
> do this reliably.  Intersect Alliance's Epilog Agent for Windows is the
> best I've seen so far, but I've found it prevents log rotation.
>
> So, I'm curious as to what you are doing.  Are you logging these
> text-based logs to a central location (syslog or otherwise)?  What tools
> are you using to do so?
>
> Thanks.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (GNU/Linux)

iD8DBQFGqgzre5atyFO78QIRAvdlAJ9ur3ibWdovOONeFXzOPwpU6RpyAACfdYv8
7tzJEEFni7FN/cW6ck8+Q7Q=
=sK8V
-----END PGP SIGNATURE-----