Browse Prior Art Database

Reliable Delivery for syslog (RFC3195)

IP.com Disclosure Number: IPCOM000005883D
Original Publication Date: 2001-Nov-01
Included in the Prior Art Database: 2001-Nov-14
Document File: 37 page(s) / 62K

Publishing Venue

Internet Society Requests For Comment (RFCs)

Related People

D. New: AUTHOR [+2]

Abstract

The BSD Syslog Protocol describes a number of service options related to propagating event messages. This memo describes two mappings of the syslog protocol to TCP connections, both useful for reliable delivery of event messages. The first provides a trivial mapping maximizing backward compatibility. The second provides a more complete mapping. Both provide a degree of robustness and security in message delivery that is unavailable to the usual UDP-based syslog protocol, by providing encryption and authentication over a connection-oriented protocol.

This text was extracted from an ASCII text file.
This is the abbreviated version, containing approximately 6% of the total text.

Network Working Group                                             D. New

Request for Comments: 3195                                       M. Rose

Category: Standards Track                   Dover Beach Consulting, Inc.

                                                           November 2001

                      Reliable Delivery for syslog

Status of this Memo

   This document specifies an Internet standards track protocol for the

   Internet community, and requests discussion and suggestions for

   improvements.  Please refer to the current edition of the "Internet

   Official Protocol Standards" (STD 1) for the standardization state

   and status of this protocol.  Distribution of this memo is unlimited.

Copyright Notice

   Copyright (C) The Internet Society (2001).  All Rights Reserved.

Abstract

   The BSD Syslog Protocol describes a number of service options related

   to propagating event messages.  This memo describes two mappings of

   the syslog protocol to TCP connections, both useful for reliable

   delivery of event messages.  The first provides a trivial mapping

   maximizing backward compatibility.  The second provides a more

   complete mapping.  Both provide a degree of robustness and security

   in message delivery that is unavailable to the usual UDP-based syslog

   protocol, by providing encryption and authentication over a

   connection-oriented protocol.

New & Rose                  Standards Track                     [Page 1]

RFC 3195              Reliable Delivery for syslog         November 2001

Table of Contents

   1.    Introduction . . . . . . . . . . . . . . . . . . . . . . . .  3

   2.    The Model  . . . . . . . . . . . . . . . . . . . . . . . . .  4

   3.    The RAW Profile  . . . . . . . . . . . . . . . . . . . . . .  7

   3.1   RAW Profile Overview . . . . . . . . . . . . . . . . . . . .  7

   3.2   RAW Profile Identification and Initialization  . . . . . . .  9

   3.3   RAW Profile Message Syntax . . . . . . . . . . . . . . . . . 10

   3.4   RAW Profile Message Semantics  . . . . . . . . . . . . . . . 10

   4.    The COOKED Profile . . . . . . . . . . . . . . . . . . . . . 11

   4.1   COOKED Profile Overview  . . . . . . . . . . . . . . . . . . 11

   4.2   COOKED Profile Identification and Initialization . . . . . . 11

   4.3   COOKED Profile Message Syntax  . . . . . . . . . . . . . . . 11

   4.4   COOKED Profile Message Semantics . . . . . . . . . . . . . . 12

   4.4.1 The IAM Element  . . . . . . . . . . . . . . . . . . . . . . 12

   4.4.2 The ENTRY Element  . . . . . . . . . . . . . . . . . . . . . 14

   4.4.3 The PATH Element . . . . . . . . . . . . . . . . . . . . . . 19

   5.    Additional Provisioning  . . . . . . . . . . . . . . . . . . 25

   5.1   Message Authenticity . . . . . . . . . . . . . . . . . . . . 25

   5.2   Message Replay . . . . . . . . . . . . . . . . . . . . . . . 25

   5.3   Message Integrity  . . . . . . . . . . . . . . . . . . . . . 25

   5.4   Message Observation  . . . . . . . . . . . . . . . . . . . . 26

   5.5   Summary of Recommended Practices . . . . . . . . . . . . . . 26

   6.    Initial Registrations  . . . . . . . . . . . . . . . . . . . 27

   6.1   Registration: The RAW Profile  . . . . . . . . . . . . . . . 27

   6.2   Registration: The COOKED Profile . . . . . . . . . . . . . . 27

   7.    The syslog DTD . . . . . . . . . . . . . . . . . . . . . . . 28

   8.    Reply Codes  . . . . . . . . . . . . . . ....