Log Of Network Information Management System Baesd On Syslog

Posted on:2013-06-13

Degree:Master

Type:Thesis

Country:China

Candidate:S J He

Full Text:PDF

GTID:2248330371468943

Subject:Computer technology

Abstract/Summary:

PDF Full Text Request

System log can be used to record system events of each day. In routers, switches, servers, IDS, IPS and other network devices, system administrators can check the system log to find the error occurred, but due to equipment differences, differences in log format, system administrators can not timely integrate various logs up to extract the required information. It is more difficult for management with the increasingly complex network environment,According to the low efficiency of the traditional log collection and the difficulty of the log management, after studying the current log collection method and log anaysis technique and consulting a lot of literature on the research of log and log management, combined with the application of enterprise, we select the Syslog Protocol as a log management protocol.Syslog is an industry standard protocol, which has been supported by many enquipment manufacturers.Data expressing of Syslog protocol is simple and clear and its storage way is also very flexible, it can be saved in a local file and it can also be sent to a Syslog server by some proper configuration. Syslog messages from multiple devices can be stored in a Syslog server in a unified storage management and these messages can easily be filtered out useful information through some process. We design a centralized prototype system for Syslog management with Enterprise network environment.This system is composed of five modules:log data acquisition module, the pretreatment module, the data management module, statistical analysis module and system output response module. Through regular expression matching technology we could get the important information from the log message.The thread pool and database connection pool technology can help us save a lot of resources for the system.It can achieve better results of log data collection, storage,query and statistical analysis. By collecting and filtering data from Syslog it can help system administrators learn the status of network devices in time and implement network systemâ€™s unified management.

Keywords/Search Tags:

System Log, Syslog Protocol, Log analysis, Security event, Log management

PDF Full Text Request

Related items

1	Research And Developement Of Centralized Log Management System Based On Syslog Protocol
2	Syslog-based Performance Event Management Within Data Center
3	Campus Network Security Management System Based On SNMP And Syslog
4	A Research About Collection Method Of Firewall Log Data Based On Syslog Technology
5	The Design And Implementation Of Network Security Event Management System Based On Equipment Log
6	Research On Dataanalysis Method Of Network Work Record Based On Active Operation And Maintenance
7	Design And Implementation Of Security Event System Based On Log Acquisition Technology
8	Formal Theories And Methods For Security Protocol Analysis
9	Research And Implementation Of The Security Event Management System Based On STAT Technology
10	Research And Application Of The Syslog Protocol In Monitoring & Annunciating System