NCS/보안위협관리통제
Send windows log to syslog server
장성한군사
2017. 2. 22. 20:38
1. Download a zip file
evtsys-64bit.zip2. Unzip to c:\windows\system32
3. In cmd
cd c:\windows\system32
evtsys.exe -i -h 192.168.8.200 -p 514
(192.168.8.200 is syslog server's IP and udp port number)
4. services.msc
eventlog to syslog 서비스 시작