notempty
notempty
notempty Dieser Artikel bezieht sich auf eine nicht mehr aktuelle Version!
notempty
Der Artikel für die neueste Version steht hier
Zu diesem Artikel gibt es bereits eine neuere Version, die sich allerdings auf eine Reseller-Preview bezieht
Connection of the UTM to a syslog server
Last adaptation to the version: 12.5.3.1
New:
- Own Securepoint format for syslog server
- Note on UDP protocol at PRTG
Syslog settingsSyslog settings
| |||
| The connection of the UTM is configured on a syslog server (syslogd). | |||
| Caption | Value | Description |  |
|---|---|---|---|
| Log the UTM hostname in the syslog messages: | No | In case of Yes activation the hostname is transmitted withnotempty This setting is not compatible with the Securepoint Operation Center (SOC)
| |
Syslog-ServerSyslog-Server | |||
| IP / Hostname: | syslog.ttt-point.de | IP address or host name of the syslog server. notempty If more than one ip-address is assigned to the hostname while you are using Round Robin DNS, the syslog messages may be send to another server each time the service gets restarted. Additionally you won't be protected against DNS Spoofing anymore. Please make sure only one address is assigned to the hostname.
| |
| Port: | 514 |
Default port for syslog messages | |
| Protocol | Default protocol for syslog messages. Alternatively can be selected here. | ||
The Securepoint appliance uses an rfc5424-based protocol format. Alternatively, the following template can be used for syslog servers. This template is automatically recognised by some syslog servers, but must be entered manually for others. template rfc5424_and_116_compat_format {template("<${PRI}>1 ${ISODATE} - ${PROGRAM} $(or ${PID} '-') - - ${MSG}\n");}; | |||
Securepoint Operation Center (SOC)
| If a UTM is added as Node added in SOC, the data that must be entered here is displayed there. |  |
Paessler PRTG
| Paessler PRTG can be used to query the syslog data of a UTM. Configuration instructions can be found in a separate Wiki article. |
 |