Difference between revisions of "NTSyslog"

From WPKG | Open Source Software Deployment and Distribution
Jump to: navigation, search
(Added page for NTsyslog, a service which forwards windows event log messages to a syslog facility.)
(No difference)

Revision as of 17:43, 27 May 2010

About NTSyslog

This program runs as a service under Windows NT based operating systems. It formats all System, Security, and Application events into a single line and sends them to a syslog(3) host.

Get the msi installer at the project's sourceforge download page: http://sourceforge.net/projects/ntsyslog/files/

For more information on configuring NTSyslog, visit the project site on http://ntsyslog.sourceforge.net/

MSI installer package.xml

These install commands do the following:

  • Install NTsyslog silently
  • Import settings from a registry file
  • Delete the Control-Tool Link from Desktop
  • Start the NTSyslog service
 

<packages>

<package id="ntsyslog" name="NTSyslog" revision="1.15" priority="5" reboot="false">
<check type="uninstall" condition="exists" path="NTSyslog"/>
<install cmd="msiexec /i %SOFTWARE%\ntsyslog\NTSyslog2.msi /qn" timeout="120"/>
<install cmd="regedit /S %SOFTWARE%\ntsyslog\settings.reg" timeout="10"/>
<install cmd="CMD /C del /Q "%ALLUSERSPROFILE%\Desktop\NTSyslogCtrl-Tool.lnk"" timeout="10"/>
<install cmd="sc start NTSYSLOG" timeout="10"/>
</package>

</packages>

Example .reg file for unattended tweaking of NTSyslog setting

See "Registry Settings" on http://ntsyslog.sourceforge.net/ for more information on tweaking your settings. 

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\SaberNet]
"Syslog"="fqdn.or.ip.of.your.syslog.server"

[HKEY_LOCAL_MACHINE\SOFTWARE\SaberNet\Syslog\System]
"Information"=dword:00000001
"Information Priority"=dword:0000001e
"Warning"=dword:00000001
"Warning Priority"=dword:0000001c
"Error"=dword:00000001
"Error Priority"=dword:0000001b
"Audit Success"=dword:00000001
"Audit Success Priority"=dword:0000001d
"Audit Failure"=dword:00000001
"Audit Failure Priority"=dword:0000001d

[HKEY_LOCAL_MACHINE\SOFTWARE\SaberNet\Syslog\Security]
"Information"=dword:00000001
"Information Priority"=dword:00000026
"Warning"=dword:00000001
"Warning Priority"=dword:00000024
"Error"=dword:00000001
"Error Priority"=dword:00000023
"Audit Success"=dword:00000001
"Audit Success Priority"=dword:00000025
"Audit Failure"=dword:00000001
"Audit Failure Priority"=dword:00000025

[HKEY_LOCAL_MACHINE\SOFTWARE\SaberNet\Syslog\Application]
"Information"=dword:00000001
"Information Priority"=dword:0000000e
"Warning"=dword:00000001
"Warning Priority"=dword:0000000c
"Error"=dword:00000001
"Error Priority"=dword:0000000b
"Audit Success"=dword:00000001
"Audit Success Priority"=dword:0000000d
"Audit Failure"=dword:00000001
"Audit Failure Priority"=dword:0000000d
Retrieved from "https://wpkg.org/index.php?title=NTSyslog&oldid=8034"