[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Logging to a server behind a firewall

To: misc@openbsd.org
Subject: Logging to a server behind a firewall
From: Mohammad Rizal Othman <rizal@mimos.my>
Date: Tue, 05 Jan 1999 09:46:18 +0800

Hi,

I have a situation where a log server has been placed behind a firewall
which runs IPFilter with ipnat enabled.  The firewall is an OpenBSD
2.4.  The log server uses an unregisted IP.  The requirement is to have
all logs of the servers in the DMZ forwarded into this log server in
real time.  Looking at the syslog.conf manpage, I could do something
like this on all the servers in DMZ

     # Everybody gets emergency messages, plus log them on another
     # machine.
     *.emerg                                                 *
     *.emerg                                                
@arpa.berkeley.edu

However, with the DNS running outside the firewall, there is no way this
approach can be implemented.  At least to my knowledge.  Can anybody
suggest an idea on how I can implement this better.  Right now I'm using
port redirection and some cron jobs to do this.


Thanks,

-- 
-------------------------------------------------------------------------------
Mohd. Rizal Othman           |  Tel: 603-9665000 x 4010
Systems Engineer             |  my $os =~ s/Windows/UNIX/:
MIMOS BHD                    |  Get out of the Windows, get into the
real world
-------------------------------------------------------------------------------

Prev by Date: Aptiva's and OpenBSD
Next by Date: Re: my printer's way slow
Prev by thread: Re: Aptiva's and OpenBSD
Next by thread: Re: Logging to a server behind a firewall
Index(es):
- Date
- Thread