4. Remote logging of dnsbl.log

Remote logging of dnsbl.log

  • B

    Hi,

    Apparently /var/log/pfblockerng/* is not included in default syslog config, therefore I can't send dnsbl.log to my remote ELK stack for analysis. Did I miss pfblocker option to enable that or should I just manually edit the /etc/syslog.conf to include this file?

    0
  • S

    Don't know about the syslog option, but I am emailing the dnsbl.log using the mailreport package.  Once installed choose Status-Email Reports-Add New Report.  Name it, save it, then edit and add this command:
    cat /var/log/pfblockerng/dnsbl.log

    This is assuming email is already working, configured on the system-advanced-notifications page.

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© 2020 Rubicon Communications, LLC | Privacy Policy