I am the same boat as Danny. I need a good syslog utility. I tried Kiwi as well, but maybe I'm doing something wrong, because I can not get the GnatBox to push messages to it. I know it's working, because its receiving messages from my Cisco switch.
I don't know about anybody else, but at the moment, I don't have any Linux boxes running. I don't plan on having any Linux boxes any time soon, so am looking for a good solution for a Windows XP/2000 system. For me, I have enough trouble reading through and analyzing the reams of e-mails my firewall sends me every day, I'd just prefer something a little easier to deal with than that...without having to get a new OS up and running on my network. That said, back to Danny's original question... Any good Syslog utilities for Windows out there besides Kiwi? Christopher Congdon Network Engineer Congdon.WEB [EMAIL PROTECTED] http://www.congdonweb.com 317-920-9601 -----Original Message----- From: John Stokes [mailto:[EMAIL PROTECTED] Sent: Thursday, April 03, 2003 22:37 To: Cox, Danny H. Cc: [EMAIL PROTECTED] Subject: Re: [gb-users] Syslogger - that works? On Thu, 3 Apr 2003 18:32:32 -0800, "Cox, Danny H." <[EMAIL PROTECTED]> wrote: > I am in dire need of a syslogger for Windows 2000 - Please do not > suggest KIWII. I dropped trying to capture this in Windows and went with Syslog-ng on a UNIX system (Linux works weel for this). > I need the following features: Syslog-ng will not meet all your desires by itself. Divide the features you want into these major functions: capturing, filtering, and reporting. It can then handle the capturing and initial filtering. > 1. Multiple log file capability - to save captured data to different > data files (at least 3) In the Syslog-ng configuration file you specify the output files. It supports macros that will allow dynamic parameters, such as dates (automatic file rotation), source hosts, etc. that will allow you to uniquely name different logs (without having define each individually). > 2. Multiple capture sources - to capture and segment data from several > different sources (at least 2) You define filters that will select matched patterns, source, program, level, and more. > 3. Ability to sort, filter, and display real-time without losing any > data - at least 3 windows Syslog-ng will do the initial sorting and filtering. There are other tools for Linux and Windows that you can then use for displaying and further filtering. You can specify the output to be piped into another program. This could fead real-time data into your monitoring program(s). > 4. Ability to compare capture screens real-time for possible patterns - > at least 2 I'm leaving this to the display program. I suggest you serch http://freshmeat.net/ for log file reporting and monitoring programs. I seen a number over a year ago when I was searching for a centralized logging and reporting solution. > I would like this additional feature: > 1. Ability to configure the above features so they can each use > independent ports You can define the listening port for each source in Syslog-ng. It may not be a single program solution but the flexability I found in Syslog-ng really helps me control my logs. -- John Stokes --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] To subscribe to the digest version first unsubscribe, then e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archive of the last 1000 messages: http://www.mail-archive.com/[EMAIL PROTECTED] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] To subscribe to the digest version first unsubscribe, then e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archive of the last 1000 messages: http://www.mail-archive.com/[EMAIL PROTECTED]
