Question about Syslog

[Bo <bo.sun () aurenav com>]

Hi, everyone!


I have installed snort in my windows system, but I want to ask two
questions realtes to syslog.

*Firstly*, I really encounter a problem when I want my Snort output log
into kiwisyslog.

My configurateion for syslog is in snort.conf :
output alert_syslog: host=127.0.0:514, LOG_AUTH LOG_ALERT

And my command for start Snort is :
C:\Snort\bin\snort -i4 -s -l c:\snort\log\ -c c:\snort\etc\snort.conf

But there is no log file into kiwisyslog.

Could you help me point out what's wrong with configuration or what the
problem may it is?




*Secondly*,I really want to know is if there are other syslog servers
apart from Kiwi Syslog server that I can use in order to *_remotely
_*monitor a network and if there are performance issues for each one of
them that I should consider for my choice e.g. if one provides quicker
alerts, uses a lot of memory etc.

p.s. Windows 7 of Windows XP system.

Thank you for your time so much!!

Looking forward your reply!

Thanks & Regards,
Bo

------------------------------------------------------------------------------
Better than sec? Nothing is better than sec when it comes to
monitoring Big Data applications. Try Boundary one-second 
resolution app monitoring today. Free.
http://p.sf.net/sfu/Boundary-dev2dev

_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users

Please visit http://blog.snort.org to stay current on all the latest Snort news!