From Network Infrastructure Policy Security Technical Implementation Guide
Part of A centralized syslog server has not been deployed.
Associated with: CCI-001575
Maintaining an audit trail of system activity logs can help identify configuration errors, understand past intrusions, troubleshoot service disruptions, and react to probes and scans of the network.
Review the network topology and verify that a syslog server is located within the management network. Note the IP address as documented on the management network topology and verify that this is what is configured on the network elements as the host device for sending syslog data. If a centralized syslog server has not been deployed in the management network, this is a finding.
Stand up a syslog server and connect it to the management network. Configure all managed network elements to send syslog data to the syslog server.
Lavender hyperlinks in small type off to the right (of CSS
class id, if you view the page source) point to
globally unique URIs for each document and item. Copy the
link location and paste anywhere you need to talk
unambiguously about these things.
You can obtain data about documents and items in other
formats. Simply provide an HTTP header Accept:
text/turtle or
Accept: application/rdf+xml.
Powered by sagemincer