How to send syslog events to aanval server

Comments

1 comment

  • * Aaron [TF]

    Bert,

    In Aanval 9, we recommend using a native syslog engine like rsyslog to ingest your syslog data and have them written to a structured directory, etc.

    Then within Aanval, head on over to your syslog sensor configuration and create a new syslog sensor, pointing to one of those files. One log file is considered a single sensor.

Please sign in to leave a comment.