Any good come from this!? -Derek >> >> So they only log local connections to the outside? Or received >> connections too? do you have a few >> more entries showing these different situations? >> >> Btw, from these logs, is there anything important that you always look >> for? Important errors, issues, etc >> would be good to know :) >> >> Thanks, >> >> Daniel >> >> On Wed, Apr 16, 2008 at 4:33 PM, Derek J. Morris >> <[EMAIL PROTECTED]> wrote: >>> Sorry, here they are...that is the naming scheme of the connectivity log aka >>> in >>> exch 2000 or 03 the smtp log >>> >>> - Derek >>> >>> >>> >>> > Hey, the logs didn't come attached... Can you send them again? >>> > >>> > Thanks, >>> > >>> > Daniel >>> > >>> > On Wed, Apr 16, 2008 at 2:51 PM, Derek J. Morris >>> > <[EMAIL PROTECTED]> wrote: >>> >> Thanks for getting back to me. Attached is a piece of the log. Also in >>> >> exchange >>> >> 2007, you can move the logs around, i have ours on >>> >> E:\Logs\Connectivity\CONNECTLOG20080322-1.LOG >>> >> >>> >> I had tried in the past a bit to recreate a decoder and rule but got in >>> over >>> >> my >>> >> head! Thanks for the help! >>> >> >>> >> - Derek Morris >>> >> >>> >> PS. beta 1.5 installed perfect on Fedora 8 and monitoring apache, >>> syslog, >>> >> secure, maillog...will be getting an agent in XP Pro SP2 going soon! >>> >> >>> >> >>> >> >>> >> > Hi Derek, >>> >> > >>> >> > I never used Exchange 2007, but on the previous version ossec should >>> >> > find it automatically >>> >> > during the agent install... Where are the logs stored for Exhange >>> >> > 2007? Do you have some >>> >> > samples? I would like to check if we support this version... >>> >> > >>> >> > Thanks, >>> >> > >>> >> > Daniel >>> >> > >>> >> > On Wed, Mar 19, 2008 at 2:31 PM, Derek J. Morris >>> >> > <[EMAIL PROTECTED]> wrote: >>> >> >> >>> >> >> Can anyone help me out with setting this Ossec agent and MS >>> Exchange >>> 2007 >>> >> to >>> >> >> start showing some alerts and messages in Ossec. >>> >> >> >>> >> >> - Derek >>> >> >> >>> >> > >>> >> >>> >> >>> > >>> >> > >