|
|
|
|
|
SysLog is based on UDP (usually port 514). SysLog is an "unreliable" protocol in the sense that neither the client nor the server have any information about whether if SysLog messages are dropped by the network.
Event Reporter
A commercial client named Event Reporter performs filtering on event logs before sending them to a SysLog.
Snare
A freeware client named Snare performs filtering on event logs before sending.
WinAgents Event Log Translation Service
A commercial client named WinAgents Event Log Translation Service performs some filtering on event logs before sending them to a SysLog server and/or an SNMP management console.
winlogd
A freeware utility named winlogd can be used to scoot all events from all event logs to a designated SysLog server.
D:\temp>winlogd -i
Installation successful, say `net start winlogd`
D:\temp>winlogd --show
Server: 192.168.101.1
Port: 514
Facility: LOCAL3
Monitor: 6000
Flush: 6000
D:\temp>net start winlogd
The winlogd service is starting.
The winlogd service was started successfully.
This program does not have a lot of options (Server, Port and Facility), but it is a quick and effective way to get MOVEit Transfer events and other messages into a designated SysLog server.