if you have some sort of nix box, you can use the default syslogd
usually recieve events from m0n0wall. ie) set your m0n0wall config to
forward syslogd events,
check off the "Enable syslog'ing to remote server"
enter its ip address
check what you would like to be logged.
ie) firewall events... possibly system events.
configure syslogd on your remote syslogd box to recieve m0n0wall
requests. on linux: syslogd -m 0 -r
restart syslogd. bingo.... your logging to a remote server.
if you want to curve it even more you can always "tail" your logfile
wiht grep statements i suppose.
ie) tail -F /var/log/m0n0wall |grep ipmon
hope thats what you need.
> Anyone have any suggestions on syslog software to look for firewall hits. I
> guess i'm just looking for something that will let me know of anything major
> attacks the firewall.
> Weather @ 5:20am - Temp: -15.3 °C - WindChill -15.3 °C - Humidity 64 % - Wind: W @ 0 km/h
> Baro: 1035.04 kPa Steady - Vis: 14 km - Sky: Few Clouds - Weather: ---
> =-=-=-= Website: http://www.WeatherServer.net =-=-=-=-=-=-=-=
> Southern Ontario Weather Email Alerts, Closed Road Alerts
<< sigterm >>
sigterm at rootednetworks dot com
High Speed Unix Hosting/Shell Services and Consulting.