From the course: Network Forensics
Join today to access over 23,300 courses taught by industry experts.
syslog-ng
- [Narrator] Syslog-ng is another log management server solution. Just like syslog, it can manage logs on a single host or forward them to a central log server. It's also possible to make it a dedicated log server. Syslog-ng is a newer, open-source project than its predecessor, syslog. NG in syslog-ng stands for next generation. As it's name suggests, it tries to improve syslog with more reliability and features. Syslog-ng's goal is that it does all of what syslog can offer but better, faster and much more. One of the enhancements is it's ability to set up advanced filters for log messages. This function is very useful because there are usually too many logs to store and the filters help you pick and choose what to keep in a more fine-grained way. Another capability to note is processing, meaning Syslog-ng taking an action to further prepare the collected logs. Syslog-ng should be able to handle most of log management tasks if not all. Syslog-ng doesn't come with a standard Ubuntu…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.
Contents
-
-
-
-
-
(Locked)
Network logs3m 6s
-
(Locked)
Intrusion and security events5m 2s
-
(Locked)
Network logs as evidence3m 16s
-
(Locked)
Network logs and compliance3m 12s
-
(Locked)
Audit logs3m 28s
-
(Locked)
Firewall logs4m 23s
-
(Locked)
syslog6m 14s
-
(Locked)
syslog-ng6m 31s
-
(Locked)
Kiwi Syslog Server2m 39s
-
(Locked)
Microsoft Log Parser4m 34s
-
(Locked)
-
-
-