syslog_server

Collects data from Mikrotik (RouterOS) system logs, configured to collect and process L2TP-clients:

It writes to logs/.logs: date/time, l2tp-secret-name, src-local-address->dst-address:dst-port

Mangle rule for this syslog server:

/ip firewall mangle add action=log chain=prerouting connection-state=new dst-address-list=!DontLog in-interface=!ether1 log=yes log-prefix=LOG_USERS protocol=tcp src-addr ess=192.168.40.0/22 tcp-flags=syn

Where 192.168.40.0/22 - l2tp user network dst-address-list "DontLog" - public DNSs i.e. 1.1.1.1, 8.8.8.8, 8.8.4.4 etc.

Configured via System>Logging>Remote

Name		Name	Last commit message	Last commit date
Latest commit History 4 Commits
syslog_srv		syslog_srv
README.md		README.md

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

syslog_server

About

Releases

Packages

Languages

endlessnights/syslog_server

Folders and files

Latest commit

History

Repository files navigation

syslog_server

About

Resources

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages