Encrypted syslog over network

Andrew Pantyukhin infofarmer at gmail.com
Fri Jan 27 05:25:56 PST 2006


On 1/27/06, Erik Norgaard <norgaard at locolomo.org> wrote:
> Andrew Pantyukhin wrote:
> > On 1/27/06, Erik Norgaard <norgaard at locolomo.org> wrote:
> >> Hi:
> >>
> >> I was thinking, is there any way of secure syslogging to a different
> >> server?
> >>
> >> AFAIK syslog uses udp/514 and I would like to monitor a number of remote
> >> hosts.
> >>
> >> Now, for privacy and security reasons, I would like that the syslog
> >> messages are sent encrypted. This may require pre-shared keys as the udp
> >> protocol does not include a handshake and key exchange.
> >>
> >> Any solution for this? syslog-ng doesn't seem to include such feature.
> >>
> > It's 2006. IPSec is the answer.
>
> Yeah, I considered that, but then you have the problem with NAT,
> something lighter would be neat.
>
> Cheers, Erik
>

Well, I would say "It's 2006. IPv6 is the answer", but you'll
probably find another reason not to do it :-)

Ssh port forwarding is the second solution on my list.


More information about the freebsd-questions mailing list