iscw10s05l05安全管理和報告-文庫吧
2024-12-25 19:58 本頁面
【正文】 server: A host that accepts and processes log messages from one or more syslog clients. ? Syslog client: A host that generates log messages and forwards them to a syslog server. Cisco Log Severity Levels Debug message Debugging 7 Informational message Informational 6 Normal but important event Notifications 5 Warning condition Warnings 4 Error condition Errors 3 Condition critical Critical 2 Immediate action required Alerts 1 Router unusable Emergencies 0 Description Name Level Log Message Format Oct 29 10:00:01 EST: %SYS5CONFIG_I: Configured from console by vty0 () Time Stamp Log Message Name and Severity Level Message Text Configuring Syslog Logging Configuring Syslog Router(config) logging [hostname | ipaddress] Router(config) logging trap level Router(config) logging facility facilitytype 1. Sets the destination logging host 2. (Optional) Sets the log severity (trap) level 3. (Optional) Sets the syslog facility Configuring Syslog (Cont.) Router(config) logging sourceinterface interfacetype interfacenumber Router(config) logging on 4. (Optional) Sets the source interface 5. Enables logging Syslog Implementation Example R3(config)logging R3(config)logging trap informational R3(config)logging sourceinterface loopback 0 R3(config)logging on SNMP Version 3 SNMPv1 and SNMPv2 Architecture ? The SNMP NMS asks agents embedded in work devices for information, or tells the agents to do something. Community Strings Used to authenticate messages between a management station, and an SNMPv1 or SNMPv2 engine: ? Read only munity strings can get information, but can not set information in an agent. ? Readwrite munity strings can get and set information in the agent. ? Having readwrite access is like having the enable password for the device. SNMP Security Models and Levels Model Level Authentication Encryption What Happens v1 noAuthNoPriv Community String No ? Authenticates with a munity string match v2 noAuthNoPriv Community String No ? Authenticates with a munity string match v3 noAuthNoPriv Username No ? Authenticates with a username authNoPriv MD5 or SHA No ? Provides HMAC MD5 or SHA algorithms for authentication authPriv MD5 or SHA DES ? Provides HMAC MD5 or SHA algorithms for authentication ? Provides DES 56bit encryption in addition to authentication based on the CBCDES (DES56) standard Definitions: ? Security model is a security strategy used by the SNMP agent ? Security level is the permitted level of security within a security model
試題試卷相關(guān)推薦
鄂ICP備17016276號-1