Kiwi Syslog Daemon with D-Link DI-804V Router  

   

  1. Your router must be installed and working.
  2. Go into the configuration panel ( http://192.168.0.1 ) and click on the "Advanced Settings" tab from the top navigation bar.
  3. Select “Administration Settings” from the left side navigation bar.
  4. Under ‘SYSTEM Log’ click on “Enable System Log Function” and enter the IP address of the computer you installed Kiwi Syslog Daemon on (or will install on).

 

 

Picture: Image of D-Link Administration Settings for System Logging

 

 

  1. Then download and install the Kiwi Syslog Daemon (if needed.) When you start Kiwi Syslog Daemon you will see

 

Picutre: Kiwi Syslog Daemon screenshot

 

  1. Select File -> Properties.

PICTURE: Kiwi Syslog Daemon screenshot

  1. Double click on the line that has Log to file.

PICTURE: Kiwi Syslog Daemon screenshot

  1. This screen defines where Kiwi will write the log file that CVTWIN processes. Note the contents of the Path and file name of log file field. This is what you enter in CVTWIN's log file field.
    • The default is C:\Program Files\SyslogD\Logs\SyslogCatchAll.txt
  2. Also, make sure that Log file format is Kiwi format ISO yyyy-mm-dd (Tab delimited), so that CVTWIN does not get snarled up trying to decipher a different log format.
  3. Click on OK when done. Then click on Log Archiving

PICTURE: Kiwi Syslog Daemon screenshot

    • This shows if any archiving is scheduled. Not scheduling archiving is good, because otherwise you will have to juggle Kiwi's archiving and running CVTWIN, because you do not want Kiwi to archive logs before CVTWIN has a chance to process them. Read the Kiwi docs on archiving and figure this out yourself. I just wanted to point out the potential conflict.
  1. Now click INPUTS, UDP

    • Make sure that Listen to UDP Syslog messages is checked. The D-Link 804V router uses UDP Port 514 to fling its logs out, so we need Kiwi configured to capture them….

Use the D-Linksys firewall filter in CVTWIN called Kiwi Syslog Daemon (DLink DI-804V) the Display filter is optional. This filters out some junk for the display version of Kiwi's log, but does not affect the log that is written to disk. CVTWIN only cares about the log file that is written to disk.

Picture: D-Shield CVTWIN.exe screen

Click on OK. Kiwi should now be configured to save logs in a format that CVTWIN can process.

 

Thanks to Troy Lister. http://www.troylister.com