Details
To ensure that logs are sent to external servers
Rationale:
Impact:
In case of hardware failure , logs stored locally can be lost. This impacts the ability of investigating security incidents and be in compliance with the requirements of logs retention period .
Solution
1-Log in to the Configuration utility.
2-Go to System > Logs > Configuration > Remote Logging.
3-For Remote IP, enter the destination syslog server IP address, or FQDN. (DNS server configuration required)
4-For Remote Port, enter the remote syslog server UDP port (default is 514).
5-Select Add.
6-Select Update.
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: Audit and Accountability.This control applies to the following type of system F5.