From the course: Protecting Your Network with Open-Source Software
Join today to access over 25,300 courses taught by industry experts.
Log forwarding: Part 2
From the course: Protecting Your Network with Open-Source Software
Log forwarding: Part 2
- [Instructor] Syslog-ng is already installed on my Ubuntu router host, but the command is sudo apt install syslog-ng. Press Enter. As you can see, it's already installed. Let's check if our syslog-ng service is up and running. Type sudo systemctl status syslog-ng. Press Enter. As you can see, it's active. Type Q to get out. The syslog-ng service is running on our Ubuntu router host. Which is the same host where snort is up and running. We'll be forwarding snort log messages through the syslog-ng log service. Then we'll forward the same log messages to a centralized log server. The centralized log server solution will be using is Kiwi. Let's go to the syslog-ng configuration file, by typing cd /etc/syslog-ng/ and press Enter. Type ls. Press Enter. And you can see that syslog-ng.conf is there. Type sudo nano syslog-ng.conf. Press Enter. Let's do a search and look for the term destination. CTRL and W Key together. Type destination, press Enter. Go to the line where it says, send a…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.