AnsweredAssumed Answered

Log decoder+collector setup

Question asked by RSA Admin Employee on Mar 14, 2014
Latest reply on Mar 18, 2014 by huan zhou

Hello guys,

I have some brutal questions on log hybrid+collector setup

It goes like this:

1) When decoder is in non ssl mode the service is available (device system view), but I cannot add it as an event destination in virtual log collector.

2) When decoder in ssl mode it's service is not available (device system view), but I can add it as a source in destination, the logs are being sent unsuccessfully:

Failed to connect to endpoint [x.x.x.x]:6514.  Reason: No route to host

So what did I forgot to do? If it's a network problem why is decoder service unavailable in ssl mode?

Also some documents claim that log collector resides on decoder. Is this true to hybrid? Because I do not see it in installed rpms.

Outcomes