Bill Roth, Ulitzer Editor-at-Large

Bill Roth

Subscribe to Bill Roth: eMailAlertsEmail Alerts
Get Bill Roth via: homepageHomepage mobileMobile rssRSS facebookFacebook twitterTwitter linkedinLinkedIn

Blog Feed Post

NeXpose integration with LogLogic (Repost)

(Ed. Note: I saw this pop up on twitter and had to repost.)

This document describes how to use NeXpose's built-in alerting features to integrate with LogLogic. This is part of a series of documents explaining how to integrate NeXpose with different log management products.

Today I will be working with a LogLogic MX VM Appliance, which can be downloaded from the LogLogic website. LogLogic, like many other logging solutions, supports multiple ways of consuming log information from many tools. This blog will describe the simplest integration method, which is NeXpose's syslog alerting feature.

First, we need to make a configuration change in LogLogic to disable automatic identification of log sources. For some reason, LogLogic detects NeXpose syslog messages as Juniper Netscreen Firewall messages. This setting can be found under Administration – System Settings. Select the "No" radio box for Auto-identify Log Sources and then click on Update at the bottom.

Now we will create a Device Type and then a Device for the NeXpose Security Console.

See the full article on the Rapid7 web site.

Read the original blog entry...

More Stories By Bill Roth

Bill Roth is a Silicon Valley veteran with over 20 years in the industry. He has played numerous product marketing, product management and engineering roles at companies like BEA, Sun, Morgan Stanley, and EBay Enterprise. He was recently named one of the World's 30 Most Influential Cloud Bloggers.