In May 2022, the Ministry of Internal Affairs and Communications' "Information Security Site for the People" was completely revamped.of the same siteAppropriate acquisition and storage of logsAs described above, "log management" plays an important role in ensuring operational safety, protecting personal information, and as a security measure.
Information security website for citizens (Ministry of Internal Affairs and Communications)
https://www.soumu.go.jp/main_sosiki/cybersecurity/kokumin/index.html
For example, in the event of a serious incident (such as a server attack), the data that records "when, who, what terminal, how they accessed, and what they did" can be used to confirm facts, understand the damage situation, It is useful for planning countermeasures after the fact, and can also be used as one of the digital data that can be submitted as evidence for the court.
Therefore, this time, a Syslog server running on Windows developed by Adiscon (Germany), which was consulted by a customer as a log management tool Win Syslog I will introduce you.
About Adiscon
Founded in 1988, the company continues to develop closed source Windows applications and open source Linux and Unix based solutions.We provide efficient systems management, personal productivity and business applications for users of all sizes, from individuals to large global enterprises.
What is WinSyslog?
Syslog Server for Microsoft Windows that supports the latest Windows 11 and Windows Server 2022.Equipped with a web application that allows remote access from a browser, it is an easy-to-use and highly reliable tool. It supports UDP syslog, TCP syslog and RELP.
Syslog (System Logging Protocol) allows you to send various event logs and messages that occur on the device to a syslog server.By managing these logs (important information), it is possible to grasp what is happening in many network devices such as routers, switches, and firewalls.
Major features
- Simple, easy to use, and easy to understand
- High performance and high reliability
- Highly scalable to meet a wide range of needs
- Free troubleshooting for home users
Applications
Sending/receiving e-mail, printout of e-mail, connection history of recording media, access history, understanding of unauthorized access from outside, PC attendance (power on/off), entry/exit, attendance management/labor management, internal control, etc.
Target user
Individual users, information security technology managers, information system security managers, etc.
Main functions
- An integrated, modular, distributed solution for systems management
- Receive messages from firewalls and routers (PIX, NetGear, IPTables, etc.)
- Troubleshoot network problems
- Comply with laws and company policies (store log messages in file or database)
- Compliant with standards such as RFC 3164, RFC 3195, and RFC 5424
- Allows automatic backup and rotation of written log files
- Can be used in combination with other Adiscon tools (MonitorWare Agent and EventReporter)
Supported OS
- Windows Server 2022/2019/2016/2012/2008/2003/2000
- Windows 11/10/8/7 / Vista / XP
- 32bit / 64bit
*For details on the software, please refer to the document below.
About WinSyslog (manufacturer page; manual)
https://www.winsyslog.com/files/manual/current/index.winsyslog.html
About License
WinSyslog is used all over the world and serves the needs of individual users to large enterprises. The three editions Free, Professioanl and Enterprise each have the same core engine but different features.You can choose according to your needs.
If you are considering the old WinSyslog Basic Edition, please select the Professional Edition.
Main feature differences
Edition | Free | Professional | Enterprise |
---|---|---|---|
Licensed remote devices (devices sending syslog messages to the server) |
1 | 100 | unlimited |
Interactive Server | Les | Les | Les |
MonitorWare Echo Reply | Les | Les | |
Heartbeat | Les | Les | |
Max Scroll Buffer | 60 messages | unlimited | unlimited |
Standard Syslog (UDP) | Les | Les | Les |
Service Version | Les | Les | |
SNMP trap support | Les | Les | |
Raw TCP Syslog (Cisco PIX, syslog-ng on UNIX) | Les | Les | |
RFC 3195 (experimental) | Les | Les | |
SETP Server | Les | ||
SSL protected SETP | Les | ||
RELP Listener | Les |
For details on the functions of each edition, please refer to the manufacturer's page below.
Edition Comparison
https://www.winsyslog.com/product-info/edition-comparison/
About upgrade
You can also apply for an upgrade from the previous version (*The latest version as of October 2022, 10 isWinSyslog 17.2ais).
You can also check the maintenance contract (UpgradeInsurance) when purchasing the product.You can receive free upgrades during the maintenance contract period and priority support from the manufacturer.The UpgradeInsurance contract period ranges from 1 year to a maximum of 5 years.
Try WinSyslog: About the trial version
Download the latest version of WinSyslog to get all the features of the enterprise version.30 days freeYou can use it atPlease try.
Download (manufacturer page)
https://www.winsyslog.com/download/
In addition, the company's Windows event log monitoring and Syslog forwarding tool Event Reporter We also handlePlease feel free to contact us.
If you don't mind, please also refer to [Special Feature] Incident Cause Investigation and Forensics
■ Click here for product details and inquiries WinSyslog | Syslog server running on Windows Manufacturer (Adiscon GmbH) Website |