Proxy Syslog Message Reception from DMZ

With the proliferation of DMZ’s (so-called De-Militarized Zones or firewall protected areas) and extranets today, systems managers are increasingly faced with the problem of receiving syslog messages from servers and networking equipment when security policy prevents syslog messages from crossing the firewall from these segregated areas.  This paper discusses three solutions for syslog message reception from the DMZ: 1) add a syslog receiver into DMZ, 2) use a separate system management network, or 3) add a proxy syslog receiver into DMZ.  This paper discusses the problem the security policy creates and three solutions for this problem.

Download the pdf to read the article