À©µµ¿ì À̺¥Æ®ºä¾î ·Î±×¸¦ ÇÑ°÷À¸·Î ÅëÇÕÇؼ °ü¸®(WEB ȯ°æ¿¡ DB)
À©µµ¿ì eventlog¸¦ syslog ¼¹ö·Î Àü¼ÛÇϱâ À§ÇÑ eventlog-to-syslog ÇÁ·Î±×·¥ »ç¿ë¹ý
eventlog-to-syslog Àº win xp, win2k3, win2k8 ¹× 64ºñÆ®¹öÀüÀ» Áö¿øÇϸç À¯´ÏÄÚµå Ç¥ÇöÀÌ µË´Ï´Ù.
1) ´Ù¿î·Îµå ÁÖ¼Ò
http://code.google.com/p/eventlog-to-syslog/
2) ´Ù¿î¹ÞÀº ÆÄÀÏÀ» ¾ÐÃàÀ» Ç®°í
evtsys.dll ÆÄÀÏ°ú evtsys.exe ÆÄÀÏÀ» C:\Windows\System32 Æú´õ¿¡ º¹»ç
3) ´ÙÀ½Àº ¾Æ·¡¿Í °°ÀÌ ¼ºñ½º¸¦ Ãß°¡ / »èÁ¦Çؼ ÀÌ¿ëÇÏ¸é µË´Ï´Ù.
¼ºñ½º Ãß°¡
C:\Windows\System32>evtsys -i -h ·Î±×º¸³¾¼¹ö ¾ÆÀÌÇÇ
¼ºñ½º Ç׸ñ¿¡¼ ½ÃÀÛÀ¯ÇüÀ» ÀÚµ¿À¸·Î...
¼ºñ½º »èÁ¦
µ¿ÀÛÁßÀÎ Eventlog to Syslog ¼ºñ½º¸¦ ÁßÁö
C:\Windows\System32>evtsys -u
evtsys Ä¿¸Çµå¿¡ ´ëÇؼ´Â ¾Æ·¡ URL À» Âü°íÇϼ¼¿ä...
PS C:\Users\Administrator> evtsys /?
Version: 4.4 (64-bit)
Usage: C:\Windows\system32\evtsys.exe -i|-u|-d [-h host] [-b host] [-f facility] [-p port]
[-t tag] [-s minutes] [-l level] [-n]
-i Install service
-u Uninstall service
-d Debug: run as console program
-h host Name of log host
-b host Name of secondary log host
-f facility Facility level of syslog message
-l level Minimum level to send to syslog.
0=All/Verbose, 1=Critical, 2=Error, 3=Warning, 4=Info
-n Include only those events specified in the config file.
-p port Port number of syslogd
-q bool Query the Dhcp server to obtain the syslog/port to log to
(0/1 = disable/enable)
-t tag Include tag as program field in syslog message.
-s minutes Optional interval between status messages. 0 = Disabled
Default port: 514
Default facility: daemon
Default status interval: 0
Host (-h) required if installing.
Windows 2012
# copy to c:\windows\system32
# evtsys -i -h piper.ddrit.com -l 0
# net start evtsys