morning
I want to export the syslog log of one of our towers to a log on my dude running on my machine in the office.
How do i do this
The dude is already a syslog server so you just tell the device you want to send syslogs from to where the dude is…
for windows
http://www.intersectalliance.com/projects/SnareWindows/
for Cisco devices put this in the configuration with your dude server ip address.
logging 192.168.1.1
I don’t know how to do it on a router board.
HTH
Lebowski
Here is how I did it.
Logging to syslog settings:
/system logging action
set remote bsd-syslog=yes name=remote remote='your syslog (Dude) server IP address' remote-port=514 \
src-address=0.0.0.0 syslog-facility=local0 syslog-severity=info target=\
remote
/system logging
add action=remote disabled=no prefix="" topics=firewall,info
And example of new TCP connection logging:
/ip firewall mangle
add action=log chain=forward connection-state=new disabled=no log-prefix=""
HTH,