How would you send syslog *securely* over the public Internet?
Solution 1:
Have you tried syslog-ng and stunnel?
- Install Stunnel
- Create certificate files for syslog-ng over Stunnel
- Configure Stunnel for Use With syslog-ng
- Install syslog-ng
- Configure syslog-ng
- DONE!
NOTE:
Stunnel (http://www.stunnel.org) is a program that allows you to encrypt arbitrary TCP connections inside SSL (Secure Sockets Layer) available on both Unix and Windows. Stunnel can allow you to secure non-SSL aware daemons and protocols (like POP, IMAP, LDAP, etc) by having Stunnel provide the encryption, requiring no changes to the daemon's code.
Solution 2:
Short answer: VPN
It may seem overkill, but it is the right answer and not that complicated to set up.
Solution 3:
Rsyslog can do this. Encrypting Syslog Traffic with TLS
Solution 4:
You might also check out the free Kiwi Secure Tunnel http://www.solarwinds.com/products/kiwi_syslog_server/related_tools.aspx