1 Reply Latest reply on Oct 19, 2017 12:08 PM by akerr

    HP-UX syslog forward to SIEM receiver

    malai2000

      Dear SIEM Experts,

       

      I understand that there is no SIEM client available from for HP-UX servers at this time and wondering how to properly configure syslog.log to be forward from HP-UX servers to McAfee/SIEM receiver server?

       

      Please share tech docs specific to HP-UX 11.31 configuration steps.

       

      Thank you.

        • 1. Re: HP-UX syslog forward to SIEM receiver
          akerr

          I'm relatively certain HP-UX uses syslog.

           

          Assuming so, and you want everything being logged to be forwarded to the receiver, you'll just want to add the following line to /etc/syslog.conf

           

          *.* @123.123.123.123 

           

          where 123.123.123.123 is the IP of the reciever.  You'll need to make sure port 514 is open between the server and the receiver and then restart syslog on the HP server.