🔥
SEC-350: Enterprise and Network Security Controls
HomeTech JournalsPersonal ProjectsSysadmin Wiki
  • SEC-350: Enterprise and Network Security Controls
  • Breakdown
    • Course Overview
  • Labs
    • Lab 1.1: Routing and DMZ (VYOS/LOG)
    • Lab 2.1: Standardizing on Timezone
    • Lab 2.2: Syslog Organization on log01
    • Lab 3.1: Segmentation
    • Lab 3.2: Wazuh
    • Lab 4.1: Network Firewalls 1
    • Lab 6.1: Port Forwarding and Jump Boxes
    • Assessment Prep
    • Network Diagram After Assessment
    • Lab 10.1: Windows Logging
  • Projects
    • osquery
    • VPN Project
    • Threat Hunting
Powered by GitBook
On this page
  • Summary:
  • Steps:
  • Notes:
  1. Labs

Lab 2.1: Standardizing on Timezone

PreviousLab 1.1: Routing and DMZ (VYOS/LOG)NextLab 2.2: Syslog Organization on log01

Last updated 2 years ago

Summary:

During this lab we standardized the log timing between Rw01, Web01, and Log01

Steps:

Debian Based:

Edit the rsyslog.conf file sudo nano /etc/rsyslog.conf

  • Comment out the line that is underlined below.

Now restart rsyslog.service

sudo systemctl restart rsyslog.service 

Now do a logger test

logger -t test whattimeisit2
sudo cat /var/log/syslog | grep whattimeisit

Redhat Based:

Edit the rsyslog.conf file sudo nano /etc/rsyslog.conf

  • Comment out the line that is underlined below.

Now restart rsyslog.service

sudo systemctl restart rsyslog.service 

Now do a logger test

logger -t test time2onweb01
sudo cat /var/log/messages | grep time2onweb01

Notes:

Output
Output

Compliance list:

https://www.unifiedcompliance.com/products/search-controls/control/01336/