Nortel Networks 4050 User Manual
142 Chapter 4 Configuring the domain
320818-A
Configuring traffic log settings using the CLI
You can configure a syslog server to receive User Datagram Protocol (UDP)
syslog messages for all HTTP requests handled by the portal server.
syslog messages for all HTTP requests handled by the portal server.
Nortel does not recommend routinely enabling this functionality for the following
reasons:
reasons:
•
Logging traffic with syslog messages generates a substantial amount of
network traffic.
network traffic.
•
Logging traffic places an additional CPU load on each Nortel SNAS 4050
device in the cluster.
device in the cluster.
•
In general, syslog servers are not intended for the traffic type of log message.
Therefore, the syslog server might not be able to cope with the quantity of
syslog messages generated within a cluster of Nortel SNAS 4050 devices.
Therefore, the syslog server might not be able to cope with the quantity of
syslog messages generated within a cluster of Nortel SNAS 4050 devices.
Enable traffic logging with syslog messages in environments where laws or
regulations require traffic logging to be performed on the SSL terminating device
itself. You can also enable it temporarily for debugging purposes.
regulations require traffic logging to be performed on the SSL terminating device
itself. You can also enable it temporarily for debugging purposes.
Because of the amount of traffic generated, Nortel recommends that you set up
syslog on the backend server if possible.
syslog on the backend server if possible.
A syslog message generated on a Nortel SNAS 4050 device looks like the
following:
following:
ena
Enables SSL on the portal server.
SSL is enabled by default.
dis
Disables SSL on the portal server.
SSL is enabled by default.
/cfg/domain #/server/ssl
followed by:
Mar 8 14:14:33 192.168.128.24 <ISD-SSL>:
192.168.128.189 TLSv1/SSLv3 DES-CBC3-SHA “GET / HTTP/1.0”.