operations:logging_telemetry
Differences
This shows you the differences between two versions of the page.
| operations:logging_telemetry [2026/06/17 14:23] – created - external edit 127.0.0.1 | operations:logging_telemetry [2026/06/17 14:25] (current) – privacyl0st | ||
|---|---|---|---|
| Line 1: | Line 1: | ||
| + | ====== Centralized Event Logging (Telemetry) ====== | ||
| + | In a decoupled architecture, | ||
| + | |||
| + | ===== 1. The Receiver (Synology NAS) ===== | ||
| + | Configure the NAS to listen for incoming syslog streams over the Trusted Management Network (VLAN 10). | ||
| + | |||
| + | - Open the **Package Center** on your Synology NAS and install **Log Center**. | ||
| + | - Open Log Center and navigate to **Log Receiving**. | ||
| + | - Check the box for **Receive logs from other devices**. | ||
| + | - Set the format to **BSD**. | ||
| + | - Set the protocol to **UDP** and the port to **514**. | ||
| + | - Click Apply. | ||
| + | |||
| + | ===== 2. The Transmitters (Linux Compute Nodes) ===== | ||
| + | Execute this configuration on **VM-A (Acquisition)**, | ||
| + | |||
| + | - Open the native RSYSLOG configuration file: | ||
| + | < | ||
| + | |||
| + | - Scroll to the bottom of the file and append the UDP forwarding rule. Replace the IP address with the VLAN 10 management IP of your Synology NAS (e.g., `192.168.10.200`). | ||
| + | <file bash / | ||
| + | # Forward all system logs via UDP to Synology Log Center | ||
| + | *.* @192.168.10.200: | ||
| + | </ | ||
| + | |||
| + | - Restart the RSYSLOG daemon to instantly begin transmission: | ||
| + | < | ||
| + | |||
| + | ===== 3. Firewall Verification ===== | ||
| + | If logs are not appearing in the Synology Log Center, verify your [[network: | ||
| + | Specifically, | ||
| + | |||
| + | **Next Step:** Implement enterprise backup policies in [[operations: | ||
operations/logging_telemetry.1781706227.txt.gz · Last modified: by 127.0.0.1