Wireless Access

Reply
Contributor II

RECOMMEND BEST SYSLOG SERVER APPLICATION

I am trying to setup a central logging server for my Aruba AP environment. Can someone with recommed a good syslog application that i can use.

 

thank you

Guru Elite

Re: RECOMMEND BEST SYSLOG SERVER APPLICATION

I would recommend Splunk.

Tim Cappalli | Aruba Security
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Contributor II

Re: RECOMMEND BEST SYSLOG SERVER APPLICATION

Thanks very much for the quick response. Do you mind throwing a little more light into why you recommend splunk?

Re: RECOMMEND BEST SYSLOG SERVER APPLICATION

Splunk can get pricey if you have a lot of data coming in but there is no substitute, it is powerful.

If you are looking for free options, syslog-ng is one, you can also look at ELSA (open-source, similar to Splunk)

With syslog-ng, you can install a front-end such as logzilla or loganalyzer.

You really need to figure out what you want to capture first before choosing a syslog server, splunk is amazing but it might be overkill..
Pasquale Monardo | Senior Network Solutions Consultant
ACDX #420 | ACCA
[If you found my post helpful, please give kudos!]
Contributor II

Re: RECOMMEND BEST SYSLOG SERVER APPLICATION

thanks very much

New Contributor

Re: RECOMMEND BEST SYSLOG SERVER APPLICATION

I've been using Syslog Watcher from EZ5 Systems on a windows machine as the syslog server for my network for more than five years.  It collects log messages from all my important network devices including my dns server, time server, web server, firewall, switches, and printers.  I have Syslog Watcher set up to alert me via e-mail and text message (via my wireless carrier's e-mail to text gateway) when important events get logged.  Syslog Watcher is a full-featured and polished syslog server offering, with an easy to use graphical UI, and EZ5 provides great support.  And they have "vendor pack" add-ins to help decipher otherwise cryptic messages logged by devices from vendors such as fortinet and cisco based on the proprietary IDs the manufacturers log in their messages.  See https://syslogwatcher.com.  (Disclosure:  I am NOT affiliated with EZ5 systems.)

Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: