I am currently working with a client who has critical sensitive servers on premises without internet access. However, the client wants to forward the logs from their devices without installing agents to a central syslog server.
(Then the syslog server will forward its logs to log analytic gateway (proxy collector via agent ) to the log analytic workspace)
The servers in question include:
- Microsoft Server 2012/2016
- Oracle Linux Server
Are there any solutions available for forwarding the logs to the central syslog server without using specific agents for those servers? Are there any other methods to send logs from those servers to the proxy collector without using agents? And what are the pros and cons of those methods?