Posted: 31-January-2010 at 15:53 | IP Logged

I thought I'd drop this in as a follow up the previous one (SNMP) , for the environments that only have syslog server as an aggregation point. I have FAILED to find a free and simple to use SNMP2Syslog forwarder (I'm not even sure if there is such a tool/daemon), but I have found instead a freeware program that installs as a service and forwards particular (or all) events to a syslog server for further processing.

Tool can be aquired from http://sourceforge.net/projects/el2sl/ and it's an MSI (which means that you can quitely install it with your application deployment method of choice - AD, 3rd party, scripts). Once installed, run the el2slconf.exe from the installed directory (normally C:\Program Files\El2Sl) and configure the source and type of events you want forwarded (I have selected all the ERROR type events for example). Apply and restart the service and you should see them streaming at your syslog console ...

For mass deployment, I have exported the registry key [HKEY_LOCAL_MACHINE\SOFTWARE\el2sl] to a .reg file - you can use your prefered method of appying this registry to a number of machines (GPO, scripts) - a quick restart of the deployed services will ensure the SAME configuration applies to them ...

DSI-Tech