I want to send logs(syslogs) to my Graylog server (remote) over the internet.
Planning to do it using rsyslog. It is a good idea to do so? How can it be more secure, if not already? Or any other secure alternative?
Not looking for VPN based options.
Use a Syslog TCP input and configure it to use TLS.
You can additionally setup client-certificate authentication on the input however, if your sending host(s) have static IPs you can lock the input port down with firewall rules.
1 Like
This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.