Help with connecting NXLog to Symantec MSS
Hi NXLog Helpers,
I am looking for some help on getting NXLog connected to Symantec MSS (Managed Security Services) and kind of on my last string with this. Right now, I am getting the following error and was wondering what I am missing. I am using this section as my conf file:
define ROOT C:\Program Files (x86)\nxlog
Moduledir %ROOT%\modules
CacheDir %ROOT%\data
Pidfile %ROOT%\data\nxlog.pid
SpoolDir %ROOT%\data
LogFile %ROOT%\data\nxlog.log
<Extension syslog>
Module xm_syslog
</Extension>
<Input internal>
Module im_internal
</Input>
<Input in>
Module im_msvistalog
# For windows 2003 and earlier use the following:
# Module im_mseventlog
</Input>
<Output out>
Module om_udp
Host (IP Address has been removed)
Port 514
Exec to_syslog_snare();
</Output>
<Route 1>
Path eventlog, in => out
</Route>
I have also attached my log file, if you need anymore information let me know.
Any help on this would be amazing and help me out a ton.
Thank you NXLog helpers, you guys/gals will save my day and be amazing.