Cisco Cisco Web Security Appliance S670 Mode D'Emploi
21-11
AsyncOS 9.0 for Cisco Web Security Appliances User Guide
Chapter 21 Monitor System Activity Through Logs
Pushing Log Files to Another Server
Next Steps
•
If you chose SCP as the retrieval method, notice that the appliance displays an SSH key, which you
will add to the SCP server host. See
will add to the SCP server host. See
Related Topics
•
•
Pushing Log Files to Another Server
Before You Begin
•
Create or edit the desired log subscription, choosing SCP as the retrieval method.
Step 1
Add keys to the remote system:
a.
Access the CLI.
b.
Enter the
logconfig -> hostkeyconfig
command.
c.
Use the commands below to display the keys:
d.
Add these keys to the remote system.
Step 2
Still in the CLI, add the remote server’s SSH public host key to the appliance:
e.
Commit your changes.
Archiving Log Files
AsyncOS archives (rolls over) log subscriptions when a current log file reaches a user-specified limit of
maximum file size or maximum time since last rollover.
maximum file size or maximum time since last rollover.
These archive settings are included in log subscriptions:
•
Rollover by File Size
•
Rollover by Time
Command
Description
Host
Display system host keys. This is the value to place in the remote system’s
‘known_hosts’ file.
‘known_hosts’ file.
User
Displays the public key of the system account that pushes the logs to the remote
machine. This is the same key that is displayed when setting up an SCP push
subscription. This is the value to place in the remote system’s ‘authorized_keys’ file.
machine. This is the same key that is displayed when setting up an SCP push
subscription. This is the value to place in the remote system’s ‘authorized_keys’ file.
Command
Description
New
Add a new key.
Fingerprint
Display system host key fingerprints.