Hi All,
I need to configure a profile into Kiwi syslog server, so that network devices logs can be forwarded for Analysis (SIEM) . Kindly suggest how can i take forward.
Launch the Kiwi Syslog Console from the icon or from the start menu
Choose File and then Setup
Right Click on Rules then Add Rules
Right Click on the New Rule and then Add Filter
Create a rule for the IP address(s) you want to forward by selecting the IP Address Field from the Pulldown Boxes. You can use multiple as long as they are seperated by commas
Make sure you enclose them with double quotes then hit Apply. This will include the source IP(s) you want to forward.
Right Click Action then Add Action
Select Send Syslog Message from the Action pulldown
Put in the destination you would like to forward the Syslog to, your SIEM server...
SolarWinds solutions are rooted in our deep connection to our user base in the THWACK® online community. More than 195,000 members are here to solve problems, share technology and best practices, and directly contribute to our product development process.