Sending Logs over internet *securely* to Remote Graylog server

I want to send logs(syslogs) to my Graylog server (remote) over the internet.
Planning to do it using rsyslog. It is a good idea to do so? How can it be more secure, if not already? Or any other secure alternative?
Not looking for VPN based options.

Use a Syslog TCP input and configure it to use TLS.

You can additionally setup client-certificate authentication on the input however, if your sending host(s) have static IPs you can lock the input port down with firewall rules.

1 Like

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.