A Prioritized Retransmission Mechanism for Reliable and Efficient Delivery of Syslog Messages

H. Tsunoda, T. Maruyama, K. Ohta, Yuji Waizumi, G. Keeni, Y. Nemoto
{"title":"A Prioritized Retransmission Mechanism for Reliable and Efficient Delivery of Syslog Messages","authors":"H. Tsunoda, T. Maruyama, K. Ohta, Yuji Waizumi, G. Keeni, Y. Nemoto","doi":"10.1109/CNSR.2009.33","DOIUrl":null,"url":null,"abstract":"Logs generated by operating systems and application programs provide important information to a network administrator. Logs are used for various purposes including security management, audit, and forensics of intranet. To use logs for such purposes, it is important that logs are reliably retrieved from hosts in the intranet. But thesyslog protocol which is widely used for network logging does not meet this requirement.Thus, the use of TCP for improving the reliability is being standardized at the IETF.However, TCP is not effective for providing the reliability in terms of cost and delay.In this paper, we examine the issues and requirements of network logging based on experiments in a real network environment and point out problems of TCP.Then we propose an efficient mechanism for the reliable delivery of syslog messages and validate its effectiveness thorough NS-2 simulations.","PeriodicalId":103090,"journal":{"name":"2009 Seventh Annual Communication Networks and Services Research Conference","volume":"106 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2009-05-11","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"10","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2009 Seventh Annual Communication Networks and Services Research Conference","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/CNSR.2009.33","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 10

Abstract

Logs generated by operating systems and application programs provide important information to a network administrator. Logs are used for various purposes including security management, audit, and forensics of intranet. To use logs for such purposes, it is important that logs are reliably retrieved from hosts in the intranet. But thesyslog protocol which is widely used for network logging does not meet this requirement.Thus, the use of TCP for improving the reliability is being standardized at the IETF.However, TCP is not effective for providing the reliability in terms of cost and delay.In this paper, we examine the issues and requirements of network logging based on experiments in a real network environment and point out problems of TCP.Then we propose an efficient mechanism for the reliable delivery of syslog messages and validate its effectiveness thorough NS-2 simulations.
一种优先级重传机制,实现Syslog消息的可靠高效传递
操作系统和应用程序产生的日志为网络管理员提供了重要的信息。日志用于企业内网的安全管理、审计、取证等多种用途。要将日志用于此类目的,从内网的主机可靠地检索日志是很重要的。而目前广泛应用于网络日志的syslog协议却不能满足这一要求。因此,使用TCP来提高可靠性正在IETF标准化。然而,TCP在成本和延迟方面不能有效地提供可靠性。本文通过在真实网络环境下的实验,分析了网络日志记录存在的问题和要求,指出了TCP存在的问题。在此基础上,提出了一种有效的系统日志信息可靠传递机制,并通过NS-2仿真验证了其有效性。
本文章由计算机程序翻译,如有差异,请以英文原文为准。
求助全文
约1分钟内获得全文 求助全文
来源期刊
自引率
0.00%
发文量
0
×
引用
GB/T 7714-2015
复制
MLA
复制
APA
复制
导出至
BibTeX EndNote RefMan NoteFirst NoteExpress
×
提示
您的信息不完整,为了账户安全,请先补充。
现在去补充
×
提示
您因"违规操作"
具体请查看互助需知
我知道了
×
提示
确定
请完成安全验证×
copy
已复制链接
快去分享给好友吧!
我知道了
右上角分享
点击右上角分享
0
联系我们:info@booksci.cn Book学术提供免费学术资源搜索服务,方便国内外学者检索中英文文献。致力于提供最便捷和优质的服务体验。 Copyright © 2023 布克学术 All rights reserved.
京ICP备2023020795号-1
ghs 京公网安备 11010802042870号
Book学术文献互助
Book学术文献互助群
群 号:604180095
Book学术官方微信