We are a medium scaled WISP with approx 80 tiks in production.
ALL our logs are currently being sent to a syslog server.
Our problem occurs with the logs being generated to our devices internal memory.
We have SSH allowed via publicly routable WAN addresses (Yes, I know, don’t lecture me on this), but we are seeing tons of failed login attempts showing up on our device’s logs.
They fall under system, error, critical Topics.
Is there anyway to implicitly filter these logs from showing on our tiks? We would only like them on our syslog server.
Thanks!