Forward syslog events to QRadar
I'm trying to forward events from Kiwi Syslog to QRadar SIEM. In Kiwi Syslog setup, I created an Action: Forward to another host; gave it the QRadar appliance's IP as the Destination IP; selected...
View ArticleEvent Log Forwarder - Where is the Audit Failure Type?
Hi There, I'm trialing Kiwi Syslog and I'm having trouble with the Log Forwarder and Security Event Log. When I click on the Security Log I don't see Audit Success or Audit Failure as an event type....
View ArticleIntegrating IPAM Reports with Syslog Messages question
I have installed the Syslog Server on server A with it's own SQL.I installed IPAM on its own server with SQL. When I go to create a Syslog Report in the IPAM, it gives me an error and says "Datasource...
View ArticleForward Event Viewer subscriptions with Event Log Forwarder for Windows
Has anyone been able to forward subscribed events (from other machines) to Kiwi Syslog server using Event Log Forwarder for Windows? I am trying to setup a single point to collect events to be...
View ArticleClik here to view.
Kiwi Syslog Service hanging
1st time starting a discussion.1st time working with Kiwi Syslog.Let me know if I'm in the wrong place. I am very new to Syslog Servers.I'm a Route/Switch type guy. We are using Kiwi Syslog to get Call...
View ArticleUser Account Control Options To Control What Syslog Messages A Specific Web...
Dear,Is there a way to to control what Syslog messages a specific Kiwi Web Server user account can view?User case:3 different admin groups, each managing a group of devices.-All devices send logs to...
View ArticleKiwi Syslog not displaying Cisco ASA 5505 syslogs
I have a Cisco ASA 5505 that is setup to send syslogs to a remote syslog server. I have kiwi syslog (free) installed on a Windows 2003 R2 Server and it is listening on UDP port 514. The syslog server...
View ArticleHow to backup Kiwi Syslog Server?
Dear all, I would like to know how to backup a Kiwi Syslog Server. We are installing this in VM, but the environment only has NetBackup. I know that I can export the data out as log file for backup,...
View ArticleKiwi Syslog Server limitations
Hi everyone, I wonder if Kiwi Syslog Server has any limitation on how many servers that it can collect the logs from or how many servers can send the logs to the syslog server? I know the Web Access...
View ArticleProcurve switches not sending syslog messages in KIWI syslog
Hi all, New here, searched for discussions but found no entry on procurve switch(es).The Procurve switches will not send any syslog messages (wiresharked the server)Turned on logging on the switch:...
View ArticleWindows failed logins tracking
Hi folks, We currently have v9.5 running on a Windows 2012 R2 VM which is the loghost for our environment of approx. 60 systems. We use AD for authentication and I'm attempting to configure the logger...
View ArticleKiwi Syslog and Ngnix -- How to config
Hello everyone, I am rather new to Kiwi Syslog and I am trying to figure out how to configure Ngnix so that it can send logs to the Kiwi Syslog server. I believe I may need a patch for Ngnix....
View ArticleKiwi Syslog Viewe Message Pattern Syntax
Hello Thwackers!!! Quick question... I want to filter using excludes in the Syslog Viewer. To be clear, I don't want to eliminate the messages from Syslog - I just want to filter inside the viewer for...
View ArticleEvent Log Forwarder - Where is the Audit Failure Type?
Hi There, I'm trialing Kiwi Syslog and I'm having trouble with the Log Forwarder and Security Event Log. When I click on the Security Log I don't see Audit Success or Audit Failure as an event type....
View ArticleDisplay original source of message when logs are aggregated through rsyslog...
I am hoping you can give me a hand with an issue that I am having. I have a number of servers in a DMZ that are logging to a central rsyslog server and then forwarding these messages to a KiwiSyslog...
View ArticleKiwi Syslog - Read text file/csv
Hi all, Is there a way that I am able to have Kiwi Syslog read from or import from a text file or CSV file that may be generated by a program that does not support Syslog? Thanks.
View Articlelog forwarder and dhcp auditing?
I am needing to forward all of our DHCP audits to the syslog, however I cannot figure out how to do that with the Log Forwarder. Which source do I use in the Event Viewer? The audit is logged to a...
View ArticleClik here to view.
Does Kiwi syslog server support TLS 1.2? If so how to enable it?
I am trying to connect to kiwi syslog server in secure TCP mode. From my client side (c# code) I try to connect to kiwi syslog sever using TLS 1.2 protocol. But SSL Handshake from server is set to TLS...
View ArticleWhen is Kiwi Syslog v10 coming out?
As you all may recall, it's been 7 months since Kiwi Syslog v9.5 was posted (see Kiwi Syslog 9.5 is now Available! ). I am very much looking forward to a major release (i.e. v10). What would this new...
View Articlehow to setup snort-log link to syslog server?
how to setup snort-log link to syslog server? in snort.conf (windows 7 32 bits)output alert_syslog: host=127.0.0.1:8080, LOG_AUTH LOG_ALERT command :snort -i 1 -c c:\snort\etc\snort.conf -s then get a...
View Article