<html><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; "><br><div><div>On Mar 20, 2009, at 5:27 PM, Jim Popovitch wrote:</div><br class="Apple-interchange-newline"><blockquote type="cite"><div>2009/3/20 Jeff Lightner <<a href="mailto:jlightner@water.com">jlightner@water.com</a>>:<br><blockquote type="cite">We have a need to monitor logs for Tomcat and Apache on a new web server<br></blockquote><blockquote type="cite">that is of course in DMZ.<br></blockquote><blockquote type="cite"><br></blockquote><blockquote type="cite">I know I can use syslog to sends logs from this host inside the firewall but<br></blockquote><blockquote type="cite">I don’t want to initiate traffic from inside the DMZ.<br></blockquote><blockquote type="cite"><br></blockquote><blockquote type="cite">Is there any tool that would let me initiate a connection from my internal<br></blockquote><blockquote type="cite">hosts to the DMZ host and pull log entries as they occur?<br></blockquote><br>There's a million ways... ;-) It all depends on what you want to do<br>with the data you pick up.<br><br>Here's some examples:<br><br>ssh host.domain.tld tail -f /var/log/apache/access.log ><br>host.domain.tld.log & tail -f host.domain.tld.log<br><br>ssh host.domain.tld tail -f /var/log/apache/access.log |<br>/usr/local/bin/script-on-local-pc<br><br>etc.<br><br>-Jim P.<br></div></blockquote></div><br><div>Aww, cmon, no netcat? /grin</div><div><br></div></body></html>