D
D
Denis Verbin2019-02-25 02:19:49
syslog
Denis Verbin, 2019-02-25 02:19:49

How to protect input in graylog?

In Graylog3, an input was created to which the log arrives from the device, and I still don’t understand how to protect this input, because anyone can send terabytes of garbage logs to my log collection system.
There is not a word about this in the documentation, syslog transmission occurs without authorization, there is no filtering by IP anywhere, the question is actually brewing - I didn’t understand something fundamentally?

Answer the question

In order to leave comments, you need to log in

1 answer(s)
A
Alexey, 2019-03-05
@AlexeyVi

If there is no filtering at the Graylog level, what prevents iptables from filtering by hosts?
But if you are now talking about the productive segment, you don’t want to ask yourself if everything is fine with our security, that “after all, anyone can send terabytes of garbage logs to my log collection system”

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question