Nagios Support Forum

Support for Nagios products and services
https://support.nagios.com/forum/

Forward logs from NLA to other SIEM Tools

https://support.nagios.com/forum/viewtopic.php?t=57077

Page 1 of 1

Forward logs from NLA to other SIEM Tools

Posted: Mon Jan 13, 2020 9:03 am
by sarfarosh
Dear Team,

We have a requirement where in RAW logs from NLA need to be forwarded to other SIEM tools like SPLUNK,

Can this been done ? if yes how can we achieve this ?

Re: Forward logs from NLA to other SIEM Tools

Posted: Mon Jan 13, 2020 9:27 am
by scottwilkerson
You can add an additional output

go to Configure -> Global Config
Click "Show Outputs" on the right

Here you can add an output to also send the logs to such as another syslog server
https://www.elastic.co/guide/en/logstas ... yslog.html

Additional output options
https://www.elastic.co/guide/en/logstas ... ugins.html
All times are UTC-05:00
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited