Rsyslog Configuration

Rsyslog Configuration

This article will provide you with detailed steps on how to configure rsyslog to send logs to another server.


Step 1: Edit the rsyslog configuration file through the following command:
      
      sudo nano /etc/rsyslog.conf

Step 2: Scroll down to the end of the file.


Step 3: In a new line add the following configuration. Here, enter the IP address and port of the destination server to where you want to forward logs to. 


      *.* @<ip-address>:<port>


Step 4: Press ctrl + x to close the file. Type “Y” to save the file.  Then press enter to save the file under the same name.


Step 5: Restart the rsyslog service using the following command:


      sudo systemctl restart rsyslog


Step 6: Use the following command to check the status of the rsyslog server. (It should reflect that the service is running)


      sudo systemctl status rsyslog

    • Related Articles

    • Azure Sensor Deployment

      Requirements for Azure Sensor Deployment To ensure that you can successfully deploy USM Anywhere in your Microsoft Azure subscription and monitor all of your Azure resources, make sure you have the following available in your Azure environment: An ...

    • AWS Sensor Deployment

      Requirements for AWS Sensor Deployment USM Anywhere deploys the Amazon Web Services (AWS) Sensor in the Amazon Elastic Compute Cloud (EC2) platform through the Amazon Virtual Private Cloud (VPC). This table includes the requirements for the AWS ...

    • Configure syslog remote logging for a Ubiquiti Unifi Security Gateway (USG)

      This article will walk through the steps required to send Syslog data from a Ubiquiti USG device to the RocketCyber Firewall Analyzer Enable Remote Logging 1. Log in to the Unifi Network Controller and click on Settings (gear icon) at the bottom of ...

    • Configure syslog remote logging for a Sophos firewall

      This article provides instruction on how to set up and enable Syslog forwarding on a Sophos firewall Configure Syslog Server Navigate to System Services > Log Settings and click Add to configure a Syslog server. Enter a Name for the Syslog server. ...

    • Hyper-V Sensor Deployment

      Review the following prerequisites to ensure an efficient setup and configuration of a USM Anywhere Sensor on Microsoft Hyper-V. Minimum Requirements These are the minimum requirements needed to set up and configure a USM Anywhere Sensor on Hyper-V: ...