Of course, I also recommend EventReporter[1], not only because it funds rsyslog development, but also because it is the only solution that can really pull everything from every Event Log on any Windows and do this in a format that is compatible between Vista, Win2008 and older Windows releases (this is not a sales plug, I have hard technical facts for that, but I think it is not appropriate to send all of them in reply to this post).
Having said this, rsyslog will of course accept messages from any process that emits syslog messages. So I would assume that there is a problem with your sender configuration. Most probably, it is not sending to the right port. Also, a firewall at the sender or the receiver (or both) may block the traffic. HTH Rainer [1] http://www.eventreporter.com > -----Original Message----- > From: [email protected] [mailto:rsyslog- > [email protected]] On Behalf Of Michael Trewartha > Sent: Wednesday, February 11, 2009 12:08 AM > To: [email protected] > Subject: [rsyslog] Windows Events to a rsyslog server? > > Hello, > We have a rsyslog server operating which receives all remote syslog > messages from our various linux servers so we can centralise tracking > of > any issues we encounter. > We also run some Windows servers, which we would like to configure to > send events of Warning and above remotely to our rsyslog server. > I've tried using the pre-built executable for Eventlog to Syslog > Utility > found here: > https://engineering.purdue.edu/ECN/Resources/Documents/UNIX/evtsys but > it appears the events aren't sending. > Save installing a winsyslog server, is there any methods anyone is > aware > of to send Windows Events to a remote rsyslog server? > _______________________________________________ > rsyslog mailing list > http://lists.adiscon.net/mailman/listinfo/rsyslog > http://www.rsyslog.com _______________________________________________ rsyslog mailing list http://lists.adiscon.net/mailman/listinfo/rsyslog http://www.rsyslog.com
