问题

Syslog操作

  • 2021年3月8日
  • 2回答
  • 52岁的观点
Userlevel 2
徽章 + 11
  • mandg
  • 开拓者
  • 20个回复

我想更好地理解给定AOS集群的syslog事件。看起来单个节点被指定为“syslog leader”,并将所有事件转发到目标收集器。因此,其余节点很少或不向收集器发送事件。这是正确的吗?

我的集群运行AOS版本5.15.4 LTS。

I wanted to better understand syslog events for a given AOS cluster. It appears that a single node is designated as the \u2018syslog leader\u2019 and forwards all events to the destination collector. Thus, the remaining nodes send little to no events to the collector. Is this correct?<\/p>

My clusters run AOS version 5.15.4 LTS for what it\u2019s worth.<\/p>","quoteUsername":"mandg","translations":{"Common":{"like":"Like","unlike":"Unlike"},"Forum":{"Quote":"Quote","Share":"Share"}}}">

2回答

R
排名
Userlevel 2
徽章 +4

嗨Mandg,

通过配置syslog监控,可以将已注册集群的系统日志(API Audit、Audit、Security Policy Hitlogs、Flow Service logs)转发到外部syslog服务器上。

请证实你问的是不是这个问题?

Raaji
Hi Mandg,<\/p>

We can configure syslog monitoring to forward system logs (API Audit, Audit, Security Policy Hitlogs, and Flow Service Logs) of the registered clusters to an external syslog server.<\/p>

Can you please confirm if this what you are asking about ?<\/p>","quoteUsername":"raaji","translations":{"Common":{"like":"Like","unlike":"Unlike"},"Forum":{"Quote":"Quote","Share":"Share"}}}">

Userlevel 2
徽章 + 11

谢谢你,Raaji。我很好奇,是否每个CVM的syslog消息单独转发到目标服务器,或者集群中的单个CVM转发集群中所有其他CVM的syslog消息。

我之所以这样问,是因为它出现在我们的集群中-其中一个CVM是主动发送syslog消息,但我们的syslog服务器没有收到来自同一集群中的其他CVM的消息好几天或几周。

Thank you, Raaji. I am curious to know if each of the CVM\u2019s forward\u00a0their syslog messages\u00a0to the destination server\u00a0individually or if a single CVM in the cluster forwards every\u00a0syslog messages for all of\u00a0the other CVM\u2019s in the cluster.\u00a0\u00a0

I\u00a0 am only asking this because it appears that way in our cluster - where one CVM is active with sending syslog messages but\u00a0our syslog server hasn\u2019t received messages from the other CVM\u2019s in the same cluster for several days or weeks.\u00a0<\/p>","quoteUsername":"mandg","translations":{"Common":{"like":"Like","unlike":"Unlike"},"Forum":{"Quote":"Quote","Share":"Share"}}}">

回复


Baidu