I want to monitor an NFS Server in my SIEM environment.
It's a Debian Server running a CrunchBang distro.
The CrunchBang distro works default with rsyslog.
I've added the following line in the rsyslog.conf file:
192.168.1.50 is the address of my ESM. (all-in-one appliance)
So when i try to add this server as a datasource:
However i'm not receiving any logs.
I thought an idea was to select Data Retrieval as NFS file source but also not getting any results.
I know CrunchBang is a Debian Server but i'm not seeing any specific Debian data source options?
Message was edited by: wulfios on 4/12/13 9:22:44 AM CDT