Custom Syslog Port Configuration

Overview

OcNOS enables the establishment of a Syslog server by designating the logging server as XX.XX.XX.XXX. This configuration sends syslog messages via the default port, which is 514. However, utilizing the default port for the Syslog server is considered a security vulnerability.

Support for In-band Management over default VRF

OcNOS offers support for DNS over default and management VRFs via in-band management interface & OOB management interface, respectively.

The feature can be enabled to run on default and management VRFClosed Virtual Routing and Forwarding simultaneously. By default, it runs on management VRF.

Features

  • CLI is supported for user to configure custom syslog port.
  • Once configured syslog conf file is updated with the configured port value.
  • At the rsyslog server side, stop the running rsyslogd daemon using the command “systemctl stop rsyslog.service”
  • Update /etc/rsyslog.conf file with syslog client configured port.
  • Start the rsyslog daemon –using systemctl start rsyslog.service.
  • Logs will redirect to syslog server through configured port.
  • After un-configuring, the port logs will be sent to syslog remote server through default port 514, to receive the logs at server side, it also needs to be set back to default.
  • Delete the custom Syslog port.