How to setup Logrep client on Windows NT/2000 ?

Requirements

  1. A user account (xferuser for example).
  2. OpenSSH for Windows server is installed.
  3. Perl and unix utilities tail and cat are available.
  4. Eventlog export utility DUMPEL from Microsoft is available.
  5. Public key part of a key pair for public key authentication.

Procedure

Default $HOME = "c:\program files\networksimplicity\ssh"
  1. Make directory c:\prog\logrep and $HOME\logrep
  2. Go to $HOME directory.
  3. Run mkpasswd -l -u xferuser >> ..\etc\passwd
  4. Run mkgroup -l >> ..\etc\group
  5. Fix the ..\etc\passwd file : Change UID for xferuser to 500.
  6. Copy public key to $HOME\.ssh directory and rename it as authorized_keys.
  7. Copy logrep.client.win to c:\prog\logrep directory.
  8. Set up a schedule task by using logrep.client.win

Logrep.client example (for use as scheduled tasks)

iis

$PERLDIR\perl.exe c:\prog\logrep\logrep.client.win -s iis -p c:\winnt\system32\logfiles\w3svc1 -n 0 -u xferuser

copies today's IIS logfile (exYYMMDD.log) from c:\winnt\system32\logfiles\w3svc1 to $HOME\logrep directory.

NT Event log

$PERLDIR\perl.exe c:\prog\logrep\logrep.client.win -s ntevent -p system -n 2500 -u xferuser

Copies last 2500 lines from NT System Event log to $HOME\logrep directory.