[rsyslog-notify] Forum Thread: Re: relay select hosts through rsyslog to a SOC? - (Mode 'reply')
noreply at adiscon.com
noreply at adiscon.com
Tue May 5 23:48:48 CEST 2015
User: dlang
Forumlink: http://kb.monitorware.com/viewtopic.php?p=25494#p25494
Message:
----------
If you require that the source IP of the packet remain as if it came from
the original source, omudpspoof is your only choice.
the vendor that you are delivering messages to is ignoring the hostname
field in the message that you are sending to them, and so they are not able
to process messages sent through a relay properly. Complain to this vendor.
if you don't need to forge the source IP of the packet to the destination,
then standard forwarding (both TCP and UDP) will work.
More information about the rsyslog-notify
mailing list