forward windows 7 events to logger directly
I configure one device with Name, IP address and and syslog as receiver. and syslog receiver is configured to collect the events against all IP address.
what I need to do on windows 7 side to forward events to logger over syslog.
Re: forward windows 7 events to logger directly
I am not sure if I fully understand your question but you can just install a SmartConnector on the Win7 host and set it to collect from local and send to your logger. There is no reason to use Snare with ArcSight because a SmartConnector installed on the host can do the same thing as Snare.