On Tue, Sep 20, 2011 at 07:56, Mike Leone <[email protected]> wrote: > Hey all. I could use a syslog server, as a central logging point for my > VMware ESX servers, my Cisco switches, etc. Since it wasn't in the > budget, I'm looking for a free one. I know it can be done with a Linux > server, but I am unclear on how, and so was hoping to find a pre-built > one, so I could save some time. > > Anybody doing this, and if so, what would you recommend? > > (I'd want to run this on my VMware ESX 4.1 servers as a VM)
I put Kiwi syslog on my Servers Alive box many years ago, and it's served me well. If I were to start over, however, I'd put up a standalone box running some flavor of *nix - see my last recommendation. Here's a pretty good starting point: http://content.hccfl.edu/pollock/AUnix2/Logging.htm See also the PDFs here: http://www.sans.org/reading_room/whitepapers/logging/ If you want to get fancy, you can download an open source SIEM appliance/VM: http://alienvault.com/community Kurt ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected] with the body: unsubscribe ntsysadmin
