Software Based Logger - Startup Script and IP Port Redirection

File uploaded by zrxcrasher on Dec 8, 2010
Version 1Show Document
  • View in full screen mode



I'm new to the Protect724 community and have been testing the software based logger.  I like it so far ... similar to the appliance with two exceptions.  They are:


1)  Startup Script - Missing


I did not see a startup script provided such that when the system is rebooted, logger automatically starts.  Perhaps I missed it and someone can point me to it.  In light of this I decided to write a script that is modeled after the other Linux startup scripts.  I've tested it and it seems to support the startup/shutdown/status of logger as a whole, as well as the stop/start of individual components.  I've tested in run-level 3 only.  I'm including it for others to test and make comments on.


2)  Port 9000 vs 443


As I recall the appliance listens on port 443.  The software based version listens on port 9000, since it runs via a non-priv user.  I added a single IPTables command on my CentOS VM to mimic this functionality.  Now I can use https://software_logger instead of https://software_logger:9000

Here's the command I used and seems to give me what I want.


/usr/sbin/iptables -t nat -I PREROUTING -p tcp -dport 443 -j REDIRECT --to-ports 9000