- Community Home
- >
- Networking
- >
- IMC
- >
- Forwarding syslog FROM IMC TO another management t...
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Discussions
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
06-18-2019 05:20 AM
06-18-2019 05:20 AM
OK, so, I have all my network equipment sending syslog traffic to my IMC server, and everything is working fine. I don't need help there.
But, I've been asked if there is any way for IMC to then transmit those same syslogs on to another management tool. There is some SIEM (Security Information and Event Management) tool that the security team is using, and instead of reconfiguring all of the network equipment to send syslogs to the SIEM tool, they want IMC to just forward the syslogs it receives.
I know there is an feature that can export the syslogs to a CSV or HTML file, but that's not what I'm looking for. I thought I read somewhere that IMC can forward syslog entries, but I can't find that document any more; I may have just imagined it.
Thanks!
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
06-19-2019 01:39 AM
06-19-2019 01:39 AM
SolutionHello,
Perhaps you are thinking of the Alarm Forwarding feature, which uses the IMC-MIB to forward alarms (as SNMP Traps) to another NMS. See also https://community.hpe.com/t5/IMC/iMC-forwards-alarm-to-a-different-NMS/td-p/6841901#.XQnzCogzaUk
There is no direct Syslog Forwarding feature, presumably because all devices that support syslog also support multiple destinations. Why not configure an additional syslog receiver on your devices? IMC CLI Script could make that really easy to deploy even on thousands of devices.
Justin
Working @ HPE
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
06-19-2019 05:07 AM
06-19-2019 05:07 AM
Re: Forwarding syslog FROM IMC TO another management tool
Thanks for the feedback. I was afraid I had confused alarm forwarding with syslog forwarding, so thanks for clearing that up. As for scripting, that's the best solution; I was just trying to avoid having to go through change control. Thanks!