syslog默认端⼝_什么是Syslog默认端⼝和安全端⼝以及如何
配置它?
和平精英怎么捏脸syslog默认端⼝
syslog is a standardized protocol used to send Logs and events to the Log server. syslog can be used in different platforms like Linux, Windows, Unix, Applications etc. In this tutorial we will look the default syslog port and secure syslog port and some examples about how to change this port number.
syslog是⽤于将⽇志和事件发送到⽇志服务器的标准化协议。 syslog可以在Linux,Windows,Unix,Applications等不同平台上使⽤。在本教程中,我们将查看默认的syslog端⼝和安全的syslog端⼝,以及有关如何更改此端⼝号的⼀些⽰例。
默认端⼝号UDP 514 (Default Port Number UDP 514)
syslog is a protocol which is defined in RFC 5424 and RFC 3164 . The port number is defined as 514 with UDP protocol for syslog services. There is also a recommendation about source port to be UDP 514 too. This port number also registered by IANA to the syslog protocol which means other applications can not use 514 as official default port.台湾andy
syslog是在RFC 5424和RFC 3164中定义的协议。 ⽤于syslog服务的端⼝号使⽤UDP协议定义为514 。
也有关于源端⼝的建议也是UDP 514 。 该端⼝号也由IANA注册到syslog协议,这意味着其他应⽤程序不能使⽤514作为官⽅默认端⼝。
替代和可靠的端⼝号TCP 514 (Alternative and Reliable Port Number TCP 514)
As stated previously the default port of syslog is UDP 514 as we know UDP is unreliable protocol according to TCP. syslog can be used for important security logs which can not tolerate log loss. We can use TCP which is far more reliable than UDP with the same port number 514.
如前所述,系统⽇志的默认端⼝为UDP 514因为根据TCP,我们知道UDP是不可靠的协议。 syslog可⽤于不能容忍⽇志丢失的重要安全⽇志。 我们可以使⽤TCP ,它⽐具有相同端⼝号514的UDP可靠得多。
安全加密的端⼝号TCP 6514 (Secure Encrypted Port Number TCP 6514)陈道明左小青
In some cases strict security standards like PCI-DSS and HIPAA needs the logs to be securely transferred. Also the security policy of the company may requires also this type of the transport security. In this case we can use TCP 6514 port. This is not an official port but its de facto standard of the implementation.
在某些情况下,诸如PCI-DSS和HIPAA之类的严格安全标准需要安全地传输⽇志。 公司的安全策略也可能需要这种类型的运输安全性。 在这种情况下,我们可以使⽤TCP 6514端⼝。 这不是官⽅端⼝,⽽是其实际执⾏标准。
思科设置S yslog服务器端⼝号 (Cisco Set Syslog Server Port Number)
As an example we can collect syslogs in Cisco devices with the following commands and configuration.
例如,我们可以使⽤以下命令和配置来收集Cisco设备中的系统⽇志。谷爱凌的个人资料
了解更多Cockpit Easy和基于WebLinux管理
First we need to enable logging and start syslog service with the following command.
⾸先,我们需要使⽤以下命令启⽤⽇志记录并启动syslog服务。
sw(config)# logging enable
then we will specify the log server IP address. But we can also specify the protocol and port number explicitly. This is not mandatory and if not specified the default udp/514 will be set.
然后我们将指定⽇志服务器的IP地址。 但是我们也可以显式指定协议和端⼝号。 这不是强制性的,如果未指定,将设置默认的udp/514 。sw(config)# logging host 192.168.10.10 tcp/514支付宝账号
莫海静syslog默认端⼝
发布评论