Cisco Cisco Email Security Appliance X1050 Betriebsanweisung
5-163
Cisco IronPort AsyncOS 7.1 for Email Daily Management Guide
OL-22160-02
Chapter 5 Logging
Overview
Log Retrieval Methods
Log files can be retrieved based upon one of the following file transfer protocols.
You set the protocol while creating or editing the log subscription in the GUI or
via the
You set the protocol while creating or editing the log subscription in the GUI or
via the
logconfig
command during the log subscription process.
Table 5-3
Log Transfer Protocols
FTP Poll
This method involves a remote FTP client accessing the Cisco
IronPort appliance to retrieve log files using an admin or operator
user’s username and password. When configuring a log subscription
to use the FTP poll method, you must supply the maximum number
of log files to keep on hand. When the maximum number is reached,
the system deletes the oldest file.
IronPort appliance to retrieve log files using an admin or operator
user’s username and password. When configuring a log subscription
to use the FTP poll method, you must supply the maximum number
of log files to keep on hand. When the maximum number is reached,
the system deletes the oldest file.
FTP Push
This method periodically pushes log files to an FTP server on a
remote computer. The subscription requires a username, password,
and destination directory on the remote computer. Log files are
transferred based on a rollover schedule set by you. See also
remote computer. The subscription requires a username, password,
and destination directory on the remote computer. Log files are
transferred based on a rollover schedule set by you. See also
.
SCP Push
This method periodically pushes log files to an SCP server on a
remote computer. This method requires an SSH SCP server on a
remote computer using the SSH1 or SSH2 protocol. The subscription
requires a username, SSH key, and destination directory on the
remote computer. Log files are transferred based on a rollover
schedule set by you.
remote computer. This method requires an SSH SCP server on a
remote computer using the SSH1 or SSH2 protocol. The subscription
requires a username, SSH key, and destination directory on the
remote computer. Log files are transferred based on a rollover
schedule set by you.
Syslog
Push
Push
This method sends log messages to a remote syslog server. This
method conforms to RFC 3164. You must submit a hostname for the
syslog server and choose to use either UDP or TCP for log
transmission. The port used is 514. A facility can be selected for the
log; however, a default for the log type is pre-selected in the
dropdown menu. Only text-based logs can be transferred using
syslog push.
method conforms to RFC 3164. You must submit a hostname for the
syslog server and choose to use either UDP or TCP for log
transmission. The port used is 514. A facility can be selected for the
log; however, a default for the log type is pre-selected in the
dropdown menu. Only text-based logs can be transferred using
syslog push.