Possible? Sure (see @tacolover101's post).
If you know the hostnames that your IPs resolve to aren't going to change for a particularly long time, you could define them in /etc/hosts. Otherwise, you could let the individual agents (rsyslog, nxlog, etc) be responsible for appending the hostname to the message and stripping it out later on with a filter. Or adding it as an individual field. There's a few options that could be done by modifying the agents themselves.
Logserver creating multiple sessions via FW to AD
Re: Logserver creating multiple sessions via FW to AD
Former Nagios employee
https://www.mcapra.com/
https://www.mcapra.com/
-
- Posts: 59
- Joined: Wed Feb 22, 2017 1:30 am
Re: Logserver creating multiple sessions via FW to AD
Right-o.
I just had a discussion with a colleague on this.
We'll see what we can do with that filter.
I just had a discussion with a colleague on this.
We'll see what we can do with that filter.
Re: Logserver creating multiple sessions via FW to AD
Sure thing! Let us know if you have additional questions.
Former Nagios employee
https://www.mcapra.com/
https://www.mcapra.com/
-
- Posts: 59
- Joined: Wed Feb 22, 2017 1:30 am
Re: Logserver creating multiple sessions via FW to AD
Awesome, thanks guys
I'll have to look into this with a colleague
I'll have to look into this with a colleague
Re: Logserver creating multiple sessions via FW to AD
We'll keep this open in case you have further related questions.
Former Nagios employee
-
- Posts: 59
- Joined: Wed Feb 22, 2017 1:30 am
Re: Logserver creating multiple sessions via FW to AD
Yup. Got it.
You can close this one out
You can close this one out