Anyone create a plugin for Syslog on OSSIM Alienvault?

John Estep · Apr 5, 2023

Would really like to be able to use syslog, but without a plugin for use with Liquid Files I cannot receive syslog data

David · Apr 6, 2023

We (LF support) don't have practical experience with the Alienvault platform, but the LF appliance is using the standard Syslog format.
According to this list of plugins in the Alienvault should already be a generic Syslog plugin, which should be available to select under the new plugin configuration ("Plugins > Edit Plugin").

When this Syslog plugin is configured the Alienvault should listen now on the udp/514 port and you should be able easily forward logs there from the LF server.

On the LF server you need then only configure the Alienvault's IP/hostname and the syslog port under the "Admin > System > Network > Syslog" tab.

John Estep · Apr 6, 2023

David said: ↑

We (LF support) don't have practical experience with the Alienvault platform, but the LF appliance is using the standard Syslog format.
According to this list of plugins in the Alienvault should already be a generic Syslog plugin, which should be available to select under the new plugin configuration ("Plugins > Edit Plugin").

When this Syslog plugin is configured the Alienvault should listen now on the udp/514 port and you should be able easily forward logs there from the LF server.

On the LF server you need then only configure the Alienvault's IP/hostname and the syslog port under the "Admin > System > Network > Syslog" tab.
Click to expand...

THANK YOU SO MUCH!!!!! That did the trick!

Anyone create a plugin for Syslog on OSSIM Alienvault?

John Estep New Member

David Administrator
Staff Member

John Estep New Member

Share This Page

Useful Searches

Anyone create a plugin for Syslog on OSSIM Alienvault?

John Estep New Member

David Administrator Staff Member

John Estep New Member

Share This Page

David Administrator
Staff Member