ñâÿçè ñ ïðîáëåìàìè áåçîïàñíîñòè â ïðîòîêîëå TLSv1.0 îðãàíèçàöèè PCI (èíäóñòðèÿ ïëàòåæíûõ êàðò) è BSI ïðåäëîæèëè âíåäðèòü è âêëþ÷èòü ïðîòîêîëû TLSv1.1 èëè TLSv1.2, à, òàêæå, êàê ìîæíî ñêîðåå îòîéòè îò èñïîëüçîâàíèÿ TLSv1.0.  ýòîé ñòàòüå ìû ïðåäñòàâëÿåì òåêóùåå ñîñòîÿíèå ýòîé ðåàëèçàöèè â ñîîòâåòñòâóþùèõ ïðîäóêòàõ VMware. Îòêàç îò îòâåòñòâåííîñòè 1.Íåêîòîðûå ïðîäóêòû èëè áîëåå ñòàðûå âåðñèè íåêîòîðûõ ïðîäóêòîâ ìîãóò îòñóòñòâîâàòü â ýòîì ñïèñêå, ïîñêîëüêó, ëèáî íåò ïëàíîâ ðåàëèçàöèè áîëåå íîâûõ ïðîòîêîëîâ TLS, ëèáî èçìåíåíèÿ TLS íå ïðèìåíèìû. Âîçìîæíî, ýòè ïðîäóêòû óæå äîñòèãëè èëè ïðèáëèæàþòñÿ ê èñòå÷åíèþ ñðîêà äåéñòâèÿ (EOA) èëè êîíöó ñðîêà ñëóæáû (EOS). Ðåçîëþöèÿ Ñ òî÷êè çðåíèÿ ðåàëèçàöèè, âêëþ÷åíèå ïðîòîêîëîâ TLSv1.1/1.2 âñåãäà âûïîëíÿåòñÿ ïî óìîë÷àíèþ, â òî âðåìÿ êàê îòêëþ÷åíèå TLSv1.0 ìîãëî áûòü ëèáî ïî óìîë÷àíèþ (îòêëþ÷åíî ïî óìîë÷àíèþ), ëèáî ÷åðåç ïàðàìåòð (ìîæåò áûòü îòêëþ÷åíî ÷åðåç ïàðàìåòð). Ïî óìîë÷àíèþ êîìïàíèÿ VMware ñòðåìèòñÿ ê âçàèìîäåéñòâèþ âñåõ ïðîäóêòîâ ïî ñàìûì âûñîêîóðîâíåâûì ñòàíäàðòàì, äîñòóïíûì â ïðîãðàììàõ è ìåæäó íèìè. Çàìå÷àíèå: Äëÿ îáðàòíîãî ðàññìîòðåíèÿ îáåñïå÷åíèÿ ñîâìåñòèìîñòè è èíòåðîïåðàáåëüíîñòè â íåêîòîðûõ ïðîäóêòàõ, õîòÿ îòêëþ÷åíèå TLSv1.0 è ðåàëèçîâàíî ïî óìîë÷àíèþ, åñòü âîçìîæíîñòü âåðíóòü ýòî èçìåíåíèå. Ïî ìåðå íåîáõîäèìîñòè, îçíàêîìüòåñü ñ ïðèëàãàåìîé äîêóìåíòàöèåé, ÷òîáû óçíàòü ïîäðîáíîñòè. Ïðîãðàììû è èõ ñòàòóñ ïåðå÷èñëåíû â 3-õ òàáëèöàõ íèæå. Ïðîãðàììû, â êîòîðûõ îáå ðåàëèçàöèè, âêëþ÷åíèå TLSv1.1/1.2 è îòêëþ÷åíèå TLSv1.0 - ðåàëèçîâàíû. Ïðîãðàììû, äëÿ êîòîðûõ çàâåðøåíà òîëüêî ðåàëèçàöèÿ TLSv1.1/1.2, íî îæèäàåòñÿ îòêëþ÷åíèå TLSv1.0. Ïðîãðàììû, â êîòîðûõ îáå ðåàëèçàöèè, âêëþ÷åíèå TLSv1.1/1.2 è îòêëþ÷åíèå TLSv1.0, îæèäàþò ðàçðàáîòêè. Ïðèìå÷àíèÿ Âåðñèÿ ñ îòêëþ÷åíèåì ïðîòîêîëà TLSv.1.0 ÿâëÿåòñÿ åãî ïåðâûì ðåëèçîì, âî âñåõ ïîñëåäóþùèõ ðåëèçàõ ýòà ôóíêöèÿ áóäåò îòêëþ÷åíà ïî óìîë÷àíèþ. Âåðñèÿ ñ âêëþ÷åííûì ïî óìîë÷àíèþ ïðîòîêîëîì TLSv1.1/1.2 ÿâëÿåòñÿ åãî ïåðâûì ðåëèçîì, âî âñåõ ïîñëåäóþùèõ ðåëèçàõ ýòà îïöèÿ áóäåò îòêëþ÷åíà ïî óìîë÷àíèþ. Ïðîãðàììû, â êîòîðûõ îáå ðåàëèçàöèè, âêëþ÷åíèå TLSv1.1/1.2 è îòêëþ÷åíèå TLSv1.0, çàâåðøåíû Ïðîäóêò Âêëþ÷åíèå (âñåãäà ïî óìîë÷àíèþ) TLSv1.1/1.2 Âåðñèÿ Îòêëþ÷åíèå TLSv1.0 - âåðñèÿ Îòêëþ÷åíèå TLSv1.0 - òèï ðåàëèçàöèè Äîêóìåíòàöèÿ VMware Platform Services Controller (External) 6.xVMware Platform Services Controller Appliance (External) 6.x 6.7 6.7 Ïî óìîë÷àíèþ Managing TLS Protocol Configuration with the TLS Configurator UtilityRelease Notes for Platform Services Controller 6.7 6.5 6.5 ×åðåç ïàðàìåòð Managing TLS protocol configuration for vSphere 6.5 (2147469)Release Notes for Platform Services Controller 6.5 6.0 Update 3 6.0 Update 3 ×åðåç ïàðàìåòð Managing TLS protocol configuration for vSphere 6.0 Update 3 (2148819) Release Notes for vCenter Server 6.0 U3 VMware Identity Manager 2.x 2.6 2.6 Ïî óìîë÷àíèþ Enabling TLS 1.0 protocol in VMware Identity Manager 2.6 (2144805)Release Notes for VMware Identity Manager 2.6 VMware Integrated OpenStack 3.x 3.0 3.0 ×åðåç ïàðàìåòð Release Notes for VMware Integrated OpenStack 3.0 VMware vCloud Director for Service Providers 8.x 8.10 8.10 ×åðåç ïàðàìåòð Managing the List of Allowed SSL Protocols in the vCloud Director Administrator's GuideRelease Notes for VMware vCloud Director for Service Providers 8.10 VMware vCloud Availability for vCloud Director 1.x 1.0.1 1.0.1 ×åðåç ïàðàìåòð Configuring vCloud Director for Installation in the vvCloud Availability for vCloud Director Installation and Configuration GuideRelease Notes for vCloud Availability for vCloud Director 1.0.1 VMware vCloud Usage Meter 3.5 3.5 3.5 Ïî óìîë÷àíèþ Release Notes for VMware vCloud Usage Meter 3.5 VMware vCloud Usage Meter 3.6 3.6 3.6 Ïî óìîë÷àíèþ Release Notes for VMware vCloud Usage Meter 3.6 VMware vCloud Air Hybrid Cloud Manager 2.x 2.0 2.0 ×åðåç ïàðàìåòð Hybrid Cloud Manager Security Protocol (2146900)Release Notes for VMware vCloud Air Hybrid Cloud Manager 2.0 VMware vRealize Business Advanced and Enterprise 8.x 8.2.4 8.2.4 Ïî óìîë÷àíèþ Release Notes for vRealize Business Advanced and Enterprise 8.2.4 VMware vRealize Business Standard for Cloud 7.x 7.1.0 7.1.0 Ïî óìîë÷àíèþ Enable or Disable TLS in the vRealize Business for Cloud Install GuideRelease Notes for vRealize Business Standard for Cloud 7.1.0 VMware vRealize Configuration Manager 5.x 5.8.2 5.8.3 Ïî óìîë÷àíèþ Release Notes for VMware vRealize Configuration Manager 5.8.3Release Notes for VMware vRealize Configuration Manager 5.8.2 VMware NSX for vSphere 6.xIncludes: Manager, Controller, Endpoint, Edge. 6.2.4 6.2.4 ×åðåç ïàðàìåòð Disabling Transport Layer Security (TLS) 1.0 on NSX (2145749)Release Notes for VMware NSX for vSphere 6.2.4 VMware vCenter Server 6.xVMware vCenter Server Appliance 6.x 6.7 6.7 Ïî óìîë÷àíèþ Managing TLS Protocol Configuration with the TLS Configurator UtilityRelease Notes for vCenter Server 6.7 6.5 6.5 ×åðåç ïàðàìåòð Managing TLS protocol configuration for vSphere 6.5 (2147469)Release Notes for vCenter Server 6.5 6.0 Update 3 6.0 Update 3 ×åðåç ïàðàìåòð Managing TLS protocol configuration for vSphere 6.0 Update 3 (2148819) Release Notes for vCenter Server 6.0 U3 vCenter Server Heartbeat 6.6.x 6.6 Update 2 6.6 Update 2 ×åðåç ïàðàìåòð Configuring VMware vCenter Server Heartbeat to use only TLS2v1.1 and TLSv1.2 (2146352)Release Notes for vCenter Server Heartbeat 6.6 Update 2 VMware vRealize Automation 7.x 7.0.1 7.1.0 ×åðåç ïàðàìåòð Disabling TLS 1.0 in vRealize Automation (2146570)Release Notes for VMware vRealize Automation 7.1.0Release Notes for VMware vRealize Automation 7.0.1 VMware vRealize Orchestrator 7.x 7.0.0 7.0.1 Ïî óìîë÷àíèþ Enable SSLv3 and TLSv1 for outgoing HTTPS connections in vRealize Orchestrator 6.0.4 and 7.0.x manually (2144318)Release Notes for vRealize Orchestrator 7.0.0Release Notes for vRealize Orchestrator 7.0.1 VMware vSphere Update Manager 6.x 6.5 6.5 ×åðåç ïàðàìåòð Managing TLS protocol configuration for vSphere 6.5 (2147469)Release Notes for vSphere Update Manager 6.5 6.0 Update 3 6.0 Update 3 ×åðåç ïàðàìåòð Configuring the TLS protocol for Update Manager 6.0 Update 3 (2149136) Release Notes for vSphere Update manager 6.0 U3 VMware vRealize Infrastructure Navigator 5.8.x 5.8.5 5.8.5 ×åðåç ïàðàìåòð Disabling TLSv1 Support in vRealize Infrastructure Navigator (2139941)Release Notes for vRealize Infrastructure Navigator 5.8.5 VMware vCenter Support Assistant 6.x 6.0.2 6.0.2 Ïî óìîë÷àíèþ TLS protocol configuration options for vCenter Support Assistant (2146079)Release Notes for vCenter Support Assistant 6.0.2 VMware vRealize Operations 6.2.x 6.2.0 6.2.x ×åðåç ïàðàìåòð Disable TLS 1.0 in vRealize Operations Manager 6.2 (2138007)Release Notes for vRealize Operations Manager 6.2.0 VMware vRealize Operations Management pack for MEDITECH 1.0 6.2.0 6.2.x ×åðåç ïàðàìåòð Disable TLS 1.0 in vRealize Operations Manager 6.2 (2138007)Release Notes for vRealize Operations Manager 6.2.0 VMware vRealize Operations Management pack for Epic 1.0 6.2.0 6.2.x ×åðåç ïàðàìåòð Disable TLS 1.0 in vRealize Operations Manager 6.2 (2138007)Release Notes for vRealize Operations Manager 6.2.0 VMware vRealize Operations Management pack for Published Applications 6.x 6.1.1 6.1.1 Ïî óìîë÷àíèþ Release Notes for VMware vRealize Operations for Published Applications 6.1.1 VMware vRealize Hyperic 5.x 5.8.6 5.8.6 Ïî óìîë÷àíèþ Release Notes for vRealize Hyperic 5.8.6 VMware vRealize Log Insight 4.x 4.0 4.0 ×åðåç ïàðàìåòð How to disable TLS 1.0 in vRealize Log Insight (2146305)Release Note for vRealize Log Insight 4.0 VMware vRealize Log Insight 3.x 3.0 3.0 ×åðåç ïàðàìåòð Log Insight 2.5 and 3.0 cannot establish connection to remote TLSv1.1 or TLSv1.2 servers (2144162)How to disable TLS 1.0 in vRealize Log Insight (2146305)Release Note for vRealize Log Insight 3.6Release Note for vRealize Log Insight 3.3Release Note for vRealize Log Insight 3.0 VMware Site Recovery Manager 6.x 6.5 6.5 Ïî óìîë÷àíèþ Release Notes for Site Recovery Manager 6.5 6.1 6.1.1 ×åðåç ïàðàìåòð  TLS Configuration Options For Site Recovery Manager 6.1.1 (2145910)Release Notes for Site Recovery Manager 6.1Release Notes for Site Recovery Manager 6.1.1 VMware vSphere Replication 6.x 6.5 6.5 Ïî óìîë÷àíèþ Release Notes for vSphere Replication 6.5 6.1.1 6.1.1 ×åðåç ïàðàìåòð TLS protocol configuration options for vSphere Replication 6.1.1 (2145893)Release Notes for vSphere Replication 6.1.1 VMware ESXi 6.x 6.7 6.7 ×åðåç ïàðàìåòð Managing TLS Protocol Configuration with the TLS Configurator UtilityRelease Notes for vSphere ESXi 6.7 6.5 6.5 ×åðåç ïàðàìåòð Managing TLS protocol configuration for vSphere 6.5 (2147469)Release Notes for vSphere ESXi 6.5 6.0 Update 3 6.0 Update 3 ×åðåç ïàðàìåòð Managing TLS protocol configuration for vSphere 6.0 Update 3 (2148819) Release Notes for vSphere ESXi 6.0 U3 VMware Tools 10.x 10.0.0 10.1.0 Ïî óìîë÷àíèþ Release Note for VMware Tools 10.1.0Release Note for VMware Tools 10.0.12Note: TLSv1.2 is leveraged for internal communications only as VMware Tools does not use SSL based communication to other components. VMware vSAN 6.x 6.7 6.7 ×åðåç ïàðàìåòð Release Notes for VMware vSAN 6.7 6.6 6.6 ×åðåç ïàðàìåòð Release Notes for VMware vSAN 6.6 6.5 6.5 ×åðåç ïàðàìåòð Managing TLS protocol configuration for vSphere 6.5 (2147469)Release Notes for VMware vSAN 6.5 6.2 6.2 ×åðåç ïàðàìåòð Release Notes for VMware vSAN 6.2 VMware AppVolumes 2.x 2.11.0 2.11.0 ×åðåç ïàðàìåòð Release Notes for VMware App Volumes 2.11.0Patch required VMware AppVolumes 3.x 3.0 3.0 Ïî óìîë÷àíèþ VMware AppVolumes 3.0 Installation and Administration GuideRelease Notes for VMware App Volumes 3.0 VMware vRealize Code Stream 2.x 2.1.0 2.1.0 ×åðåç ïàðàìåòð Disabling TLS 1.0 in vRealize Automation (2146570)Release Notes for VMware vRealize Code Stream 2.1 VMware Remote Console 8.x 8.0 8.0 Ïî óìîë÷àíèþ Release Notes for VMware Remote Console 8.0 VMware vFabric tc Server 2.9.x 2.9.13 2.9.13 ×åðåç ïàðàìåòð Release Notes for vFabric tc Server 2.9 VMware Horizon for Linux 6.2.x 6.2.1 6.2.1 Ïî óìîë÷àíèþ Setting Options in Configuration Files on Linux Desktop in the Horizon 6 Version 6.2 GuideRelease Notes for VMware Horizon 6 version 6.2.1 VMware Horizon Client 4.x 4.0.1 4.0.1 ×åðåç ïàðàìåòð Configure Advanced TLS/SSL Options in the VMware Horizon Client Admin Guide for iOSConfigure Advanced TLS/SSL Options in the VMware Horizon Client Admin Guide for AndroidConfigure Advanced TLS/SSL Options in the VMware Horizon Client Admin Guide for Mac OS XConfigure Advanced TLS/SSL Options in the VMware Horizon Client Admin Guide for LinuxConfigure Advanced TLS/SSL Options in the VMware Horizon Client Admin Guide for WindowsRelease Notes for VMware Horizon Client 4.1 for iOSRelease Notes for VMware Horizon Client 4.1 for AndroidRelease Notes for VMware Horizon Client 4.1 for Mac OS XRelease Notes for VMware Horizon Client 4.1 for LinuxRelease Notes for VMware Horizon Client 4.1 for Windows VMware Horizon View 7.x 7.0 7.0 Ïî óìîë÷àíèþ Configuring security protocols on components to connect the View Client with desktops (2130798)Release Notes for VMware Horizon View 7.0 VMware Horizon View 6.x 6.2.1 6.2.1 Ïî óìîë÷àíèþ Configuring security protocols on components to connect the View Client with desktops (2130798)Release Notes for VMware Horizon View 6.2.1 VMware Horizon Air 16.x 16.6.0 16.6.0 ×åðåç ïàðàìåòð Disabling TLS 1.0 in Horizon Air Appliances (2146781)Release Notes for VMware Horizon Air 16.6 Horizon Daas 7.0 7.0.0 7.0.0 Ïî óìîë÷àíèþ Release Notes for VMware Horizon DaaS 7.0 VMware Mirage 5.7 5.7 ×åðåç ïàðàìåòð Disabling TLS 1.0 on Windows systems (2145606)Release Notes for VMware Mirage 5.7 VMware Horizon Air Hybrid-mode 1.x 1.0 1.0 Ïî óìîë÷àíèþ Change the Security Protocols and Cipher Suites Used for TLS or SSL Communication in VMware Horizon Air Hybrid-Mode 1.0 Administration GuideConfiguration Settings for System Settings and Server Certificates in VMware Horizon Air Hybrid-Mode 1.0 Administration GuideRelease Notes for VMware Horizon Air Hybrid-mode 1.0 VMware Software Manager - Download Server 1.3 1.3 Ïî óìîë÷àíèþ Enable SSLv3 or TLSv1 in the VMware Software Manager - Download Service User Guide.Release Notes for VMware Software Manager 1.3 VMware Photon OS 1.0 1.0 ×åðåç ïàðàìåòð Disabling TLS 1.0 to Improve Transport Layer Security in the Photon OS Administration Guide VMware Continuent 5.xIncludes: Analytics and Big Data, Cluster, Disaster Recovery, Replication 5.0 5.0 Ïî óìîë÷àíèþ Release Notes for VMware Software Manager 5.0 VMware vSphere Big Data Extension 2.3.x 2.3.2 2.3.2 ×åðåç ïàðàìåòð Release Notes for vSphere Big Data Extension 2.3 NSX-T 1.1 1.1 Ïî óìîë÷àíèþ Release Notes for NSX-T 1.1 vCenter Chargeback Manager 2.7.2 2.7.1 Ïî óìîë÷àíèþ Release Notes for Chargeback Manager 2.7.2 VMware Network Insight 3.x 3.3 3.3 Ïî óìîë÷àíèþ Release Notes for VMware Network Insight 3.3 Ïðîäóêòû, äëÿ êîòîðûõ çàâåðøåíà òîëüêî ðåàëèçàöèÿ TLSv1.1/1.2, íî îæèäàåòñÿ îòêëþ÷åíèå TLSv1.0 Ïî ìåðå âûïóñêà ñîôòà ñ îáåèìè ðåàëèçàöèÿìè îíè áóäóò ïåðåìåùàòüñÿ èç ýòîãî ðàçäåëà â âåðõíþþ òàáëèöó; îäíàêî, ïðîãðàììû è èõ äîñòóïíîñòü ìîãóò èçìåíÿòüñÿ è îñòàâàòüñÿ â ýòîé òàáëèöå. Ïðîäóêò Âêëþ÷åíèå (âñåãäà ïî óìîë÷àíèþ) TLSv 1.1/1.2 Âåðñèÿ Îòêëþ÷åíèå TLSv1.0 Ïëàíîâàÿ âåðñèÿ Äîêóìåíòàöèÿ VMware vCenter Converter Standalone 6.x 6.1.1 (Îæèäàþùèé) VMware vCenter Converter Standalone User's Guide (Ñòðàíèöà 40)Release Notes for VMware vCenter Converter Standalone 6.1.1 VMware Fusion 8.x 8.0.0 (Îæèäàþùèé) Release Notes for VMware Fusion 8 VMware Workstation Pro/Player 12.x 12.0.0 (Îæèäàþùèé) Release Notes for VMware Workstation 12 ProRelease Notes for VMware Workstation 12 Player VMware vSphere Data Protection 6.1.x 6.14 (Îæèäàþùèé) Release Notes for Data Protection 6.1.4 Ïðîäóêòû, â êîòîðûõ îáå ðåàëèçàöèè, âêëþ÷åíèå TLSv1.1/1.2 è îòêëþ÷åíèå TLSv1.0, îæèäàþò îáðàáîòêè Ïî ìåðå âûïóñêà ñîôòà ñ îáåèìè ðåàëèçàöèÿìè îíè áóäóò ïåðåìåùàòüñÿ èç ýòîãî ðàçäåëà â âåðõíþþ òàáëèöó; îäíàêî, ïðîãðàììû è èõ äîñòóïíîñòü ìîãóò èçìåíÿòüñÿ è îñòàâàòüñÿ â ýòîé òàáëèöå. Ïðîäóêò Âêëþ÷åíèå (âñåãäà ïî óìîë÷àíèþ) TLSv 1.1/1.2 Ïëàíîâàÿ âåðñèÿ Îòêëþ÷åíèå TLSv1.0 Ïëàíîâàÿ âåðñèÿ Äîêóìåíòàöèÿ VMware Photon Controller 1.x (Îæèäàþùèé) (Îæèäàþùèé) (Îæèäàþùèé)

Ïî óìîë÷àíèþ, â äèñòðèáóòèâå FreePBX Distro áîëüøèíñòâî ëîã – ôàéëîâ Asterisk ñêîíôèãóðèðîâàíû íà õðàíåíèå â òå÷åíèå ñåìè äíåé. Çà÷àñòóþ, ïîëüçîâàòåëè æàëóþòñÿ íà òåõíè÷åñêèå ïðîáëåìû (íåäîçâîí, êîðîòêèå ãóäêè, îáðûâ è òàê äàëåå) ñïóñòÿ íåäåëè, à ïîðîé è ìåñÿöû. Èìåííî ïî ýòîé ïðè÷èíå, â ñòàòüå ðàññêàæåì êàê íàñòðîèòü õðàíåíèå ëîã – ôàéëîâ íà áîëåå äëèòåëüíîå âðåìÿ è êàê äîáàâèòü ñæàòèå äëÿ íèõ, ÷òîáû ñîõðàíèòü ìåñòî íà æåñòêèõ äèñêàõ. Íàñòðîéêà Çà äëèòåëüíîñòü õðàíåíèÿ îòâå÷àåò ôàéë /etc/logrotate.d/asterisk. Äàâàéòå îòêðîåì åãî ðåäàêòîðîì vim è óâåëè÷èì âðåìÿ õðàíåíèÿ ïî íóæíûì ôàéëà äî 45 äíåé: [root@asterisk ~]# vim /etc/logrotate.d/asterisk È äëÿ ôàéëà /var/log/asterisk/freepbx_dbug ìåíÿåì ïàðàìåòð rotate ñ 7 íà 45: /var/log/asterisk/freepbx_dbug{ daily missingok rotate 45 //ìåíÿåì äàííîå çíà÷åíèå äëÿ óâåëè÷åíèÿ âðåìåíè õðàíåíèÿ â äíÿõ; notifempty compress //äîáàâëÿåì ïàðàìåòð compress, äëÿ àêòèâàöèè ñæàòèÿ; sharedscripts create 0640 asterisk asterisk } Âàæíî!: Ñ óâåëè÷åíèåì âðåìåíè õðàíåíèÿ ôàéëîâ, óâåëè÷èâàåòñÿ è åãî îáúåì, çàíèìàåìûé íà æåñòêèõ äèñêàõ ñåðâåðà. Ïðè äîáàâëåíèè ïàðàìåòðà compress â êîíôèãóðàöèîííóþ ñåêöèþ, ôàéë áóäåò ñæèìàòüñÿ c ïîìîùüþ óòèëèòû êîìïðåññèè gzip Êàê ìîæíî óâèäåòü â íàøåì ïðèìåðå, äëÿ ëîã – ôàéëà /var/log/asterisk/freepbx_dbug âûñòàâëåí ïàðàìåòð daily (åæåäíåâíî), êîòîðûé ðåãëàìåíòèðóåò çíà÷åíèå ïàðàìåòðà rotate. Ýòî îçíà÷àåò, ÷òî çíà÷åíèå 45 áóäåò èíòåðïðåòèðîâàíî äíÿìè. Åñëè âû õîòèòå óêàçûâàòü çíà÷åíèå ïàðàìåòðà rotate â ìåñÿöàõ, òî óêàæèòå çäåñü âìåñòî daily monthly (åæåìåñÿ÷íî). Ïî çàâåðøåíèþ íàñòðîåê ñîõðàíèòå èõ íàæàòèåì :x! + Enter - èçìåíåíèÿ âñòóïÿò â ñèëó.

Ïðîòîêîë Syslog - ýòî ñïîñîá äëÿ ñåòåâûõ óñòðîéñòâ îòïðàâëÿòü ñîîáùåíèÿ î ñîáûòèÿõ íà ñåðâåð ðåãèñòðàöèè - îáû÷íî èçâåñòíûé êàê Syslog ñåðâåð. Ýòîò ïðîòîêîë ïîääåðæèâàåòñÿ øèðîêèì ñïåêòðîì óñòðîéñòâ è ìîæåò èñïîëüçîâàòüñÿ äëÿ ðåãèñòðàöèè ðàçëè÷íûõ òèïîâ ñîáûòèé. Íàïðèìåð, ìàðøðóòèçàòîð ìîæåò îòïðàâëÿòü ñîîáùåíèÿ î òîì, ÷òî ïîëüçîâàòåëè ïîäêëþ÷àþòñÿ ÷åðåç êîíñîëü, à âåá-ñåðâåð ìîæåò ðåãèñòðèðîâàòü ñîáûòèÿ, â êîòîðûõ îòêàçàíî â äîñòóïå. Áîëüøèíñòâî ñåòåâûõ óñòðîéñòâ, òàêèõ êàê ìàðøðóòèçàòîðû è êîììóòàòîðû, ìîãóò îòïðàâëÿòü ñîîáùåíèÿ ñèñòåìíîãî æóðíàëà. Êðîìå òîãî, ñåðâåðû *nix òàêæå ìîãóò ãåíåðèðîâàòü äàííûå ñèñòåìíîãî æóðíàëà, êàê è áîëüøèíñòâî áðàíäìàóýðîâ, íåêîòîðûå ïðèíòåðû è äàæå âåá-ñåðâåðû, òàêèå êàê Apache. Ñåðâåðû íà áàçå Windows èçíà÷àëüíî íå ïîääåðæèâàþò Syslog, íî áîëüøîå êîëè÷åñòâî ñòîðîííèõ èíñòðóìåíòîâ ïîçâîëÿåò ëåãêî ñîáèðàòü äàííûå æóðíàëà ñîáûòèé Windows èëè IIS è ïåðåñûëàòü èõ íà ñåðâåð Syslog.  îòëè÷èå îò SNMP, Syslog íå ìîæåò èñïîëüçîâàòüñÿ äëÿ «îïðîñà» óñòðîéñòâ äëÿ ñáîðà èíôîðìàöèè. Íàïðèìåð, SNMP èìååò ñëîæíóþ èåðàðõè÷åñêóþ ñòðóêòóðó, êîòîðàÿ ïîçâîëÿåò ñòàíöèè óïðàâëåíèÿ çàïðàøèâàòü ó óñòðîéñòâà èíôîðìàöèþ î òàêèõ âåùàõ, êàê äàííûå î òåìïåðàòóðå èëè äîñòóïíîå äèñêîâîå ïðîñòðàíñòâî. Ýòî íåâîçìîæíî ñ Syslog - îí ïðîñòî îòïðàâëÿåò ñîîáùåíèÿ â öåíòðàëüíîå ìåñòî, êîãäà èíèöèèðóþòñÿ îïðåäåëåííûå ñîáûòèÿ. Syslog ñåðâåðû Syslog - îòëè÷íûé ñïîñîá îáúåäèíèòü ëîãè èç íåñêîëüêèõ èñòî÷íèêîâ â îäíîì ìåñòå. Êàê ïðàâèëî, áîëüøèíñòâî ñåðâåðîâ Syslog èìåþò íåñêîëüêî êîìïîíåíòîâ, êîòîðûå äåëàþò ýòî âîçìîæíûì. Syslog ñëóøàòåëü: Syslog ñåðâåð äîëæåí ïîëó÷àòü ñîîáùåíèÿ, îòïðàâëåííûå ïî ñåòè. Ïðîöåññ ïðîñëóøèâàíèÿ ñîáèðàåò äàííûå ñèñòåìíîãî æóðíàëà, îòïðàâëåííûå ÷åðåç 514 UDP ïîðò. Êàê ìû çíàåì UDP-ñîîáùåíèÿ íå ïîäòâåðæäàþòñÿ èëè íå ãàðàíòèðóþòñÿ, ïîýòîìó èìåéòå â âèäó, ÷òî íåêîòîðûå ñåòåâûå óñòðîéñòâà áóäóò îòïðàâëÿòü äàííûå Syslog ÷åðåç 1468 TCP ïîðò äëÿ îáåñïå÷åíèÿ äîñòàâêè ñîîáùåíèé. Áàçà äàííûõ: áîëüøèå ñåòè ìîãóò ãåíåðèðîâàòü îãðîìíîå êîëè÷åñòâî äàííûõ syslog’à . Õîðîøèå ñåðâåðû áóäóò èñïîëüçîâàòü áàçó äàííûõ äëÿ õðàíåíèÿ ëîãîâ äëÿ áûñòðîãî ïîèñêà. Ïðîãðàììíîå îáåñïå÷åíèå äëÿ óïðàâëåíèÿ è ôèëüòðàöèè: èç-çà áîëüøèõ îáúåìîâ äàííûõ èíîãäà áûâàåò ñëîæíî íàéòè êîíêðåòíûå çàïèñè â æóðíàëå. Ðåøåíèå ñîñòîèò â òîì, ÷òîáû èñïîëüçîâàòü syslog ñåðâåð, êîòîðûé àâòîìàòèçèðóåò ÷àñòü ðàáîòû è ïîçâîëÿåò ëåãêî ôèëüòðîâàòü è ïðîñìàòðèâàòü âàæíûå ñîîáùåíèÿ æóðíàëà. Ñåðâåðû äîëæíû èìåòü âîçìîæíîñòü ãåíåðèðîâàòü îïîâåùåíèÿ, óâåäîìëåíèÿ è àëåðòû â îòâåò íà âûáðàííûå ñîîáùåíèÿ, ÷òîáû àäìèíèñòðàòîðû ñðàçó óçíàâàëè, êîãäà âîçíèêëà ïðîáëåìà, è ìîãëè ïðåäïðèíÿòü áûñòðûå äåéñòâèÿ Syslog ñîîáùåíèÿ Ñîîáùåíèÿ ñèñòåìíîãî æóðíàëà îáû÷íî ñîäåðæàò èíôîðìàöèþ, ïîìîãàþùóþ îïðåäåëèòü îñíîâíóþ èíôîðìàöèþ î òîì, ãäå, êîãäà è ïî÷åìó áûë îòïðàâëåí ëîã: IP-àäðåñ, îòìåòêà âðåìåíè è ôàêòè÷åñêîå ñîîáùåíèå. Ñèñòåìíûé æóðíàë èñïîëüçóåò êîíöåïöèþ, íàçûâàåìîå “facility”, ÷òîáû èäåíòèôèöèðîâàòü èñòî÷íèê ñîîáùåíèÿ íà ëþáîì êîìïüþòåðå. Íàïðèìåð, facility “0” áóäåò ñîîáùåíèåì ÿäðà, à facility «11» áóäåò ñîîáùåíèåì FTP. Ýòî âîñõîäèò ñâîèìè êîðíÿìè ê syslog'à UNIX.  áîëüøèíñòâå ñåòåâûõ óñòðîéñòâ Cisco èñïîëüçóþòñÿ êîäû îáúåêòîâ «Local6» èëè «Local7». Syslog ñîîáùåíèÿ òàêæå èìåþò ïîëå óðîâíÿ ñåðüåçíîñòè. Óðîâåíü ñåðüåçíîñòè óêàçûâàåò, íàñêîëüêî âàæíûì ñ÷èòàåòñÿ ñîîáùåíèå. Ñåðüåçíîñòü «0» ÿâëÿåòñÿ ÷ðåçâû÷àéíîé ñèòóàöèåé, «1» - ýòî ïðåäóïðåæäåíèå, êîòîðîå òðåáóåò íåìåäëåííûõ äåéñòâèé, à øêàëà ïðîäîëæàåòñÿ âïëîòü äî «6» è «7» - èíôîðìàöèîííûõ è îòëàäî÷íûõ ñîîáùåíèé. 0 Emergency Ñèñòåìà íå ðàáîòîñïîñîáíà 1 Alert Ñèñòåìà òðåáóåò íåìåäëåííîãî âìåøàòåëüñòâà 2 Critical Ñîñòîÿíèå ñèñòåìû êðèòè÷åñêîå 3 Error Ñîîáùåíèÿ îá îøèáêàõ 4 Warning Ïðåäóïðåæäåíèÿ î âîçìîæíûõ ïðîáëåìàõ 5 Notice Ñîîáùåíèÿ î íîðìàëüíûõ, íî âàæíûõ ñîáûòèÿõ 6 Informational Èíôîðìàöèîííûå ñîîáùåíèÿ 7 Debug Îòëàäî÷íûå ñîîáùåíèÿ Íåäîñòàòêè syslog Ó ïðîòîêîëà syslog åñòü íåñêîëüêî íåäîñòàòêîâ. Âî-ïåðâûõ, ïðîáëåìà ñîãëàñîâàííîñòè. Ïðîòîêîë Syslog íå îïðåäåëÿåò ñòàíäàðòíûé ñïîñîá ôîðìàòèðîâàíèÿ ñîäåðæèìîãî ñîîáùåíèÿ - è ñóùåñòâóåò ñòîëüêî æå ñïîñîáîâ ôîðìàòèðîâàíèÿ ñîîáùåíèÿ, ñêîëüêî ñóùåñòâóåò ðàçðàáîò÷èêîâ. Íåêîòîðûå ñîîáùåíèÿ ìîãóò áûòü óäîáî÷èòàåìûìè, à íåêîòîðûå íåò. Syslog ýòî íå âîëíóåò - îí ïðîñòî ïðåäîñòàâëÿåò ñïîñîá ïåðåäà÷è ñîîáùåíèÿ. Åñòü òàêæå íåêîòîðûå ïðîáëåìû, êîòîðûå âîçíèêàþò èç-çà òîãî, ÷òî syslog èñïîëüçóåò UDP â êà÷åñòâå òðàíñïîðòà - ïîýòîìó âîçìîæíî ïîòåðÿòü ñîîáùåíèÿ èç-çà ïåðåãðóçêè ñåòè èëè ïîòåðè ïàêåòîâ. Íàêîíåö, åñòü íåêîòîðûå ïðîáëåìû áåçîïàñíîñòè.  ñîîáùåíèÿõ syslog’à íåò àóòåíòèôèêàöèè, ïîýòîìó îäèí êîìïüþòåð ìîæåò âûäàòü ñåáÿ çà äðóãîé êîìïüþòåð è îòïðàâèòü ëîæíûå ñîáûòèÿ æóðíàëà. Îí òàêæå ïîäâåðæåí ïîâòîðíûì àòàêàì. Íåñìîòðÿ íà ýòî, ìíîãèå àäìèíèñòðàòîðû ñ÷èòàþò, ÷òî syslog ÿâëÿåòñÿ öåííûì èíñòðóìåíòîì, è ÷òî åãî íåäîñòàòêè îòíîñèòåëüíî íåçíà÷èòåëüíû.