[syslog-ng] Syslog IP information is incorrect
Tom Valdes
tom.valdes at gmail.com
Thu Sep 28 19:05:39 CEST 2006
I have some machines behind a firewall VLAN of 10.0.240.0 sending logs to a
Linux Syslog server on the 10.0.230.0 network.
The 2 machines are 10.0.240.71 and 10.0.240.72 and the Syslog server is
10.0.230.222.
They are Windows and I am using the Eventlog to Syslog utility from Purdue
University (
https://engineering.purdue.edu/ECN/Resources/Documents/UNIX/evtsys) to
convert the Windows event logs to Syslog.
Syslog is getting the information, however, any information from the 2
machines are coming in as 10.0.230.1.
-------
Sep 28 11:37:54 10.0.230.1 Service Control ....... <---- This machine is
actually 10.0.240.71
-------
Is there a way to get Syslog to read the correct IP information? or does
Syslog simply not pass correct host information through a router?
thanks,
tom
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.balabit.hu/pipermail/syslog-ng/attachments/20060928/55fda044/attachment.html
More information about the syslog-ng
mailing list