Junos OS

Expand all | Collapse all

Are remote sent logs encrypted in junos?

Jump to Best Answer
  • 1.  Are remote sent logs encrypted in junos?

    Posted 09-20-2018 10:48
    Hello,

    I have read about the options to send logs to a remote server. Are they encrypted ?

    Thank you
    #log
    #encrypted


  • 2.  RE: Are remote sent logs encrypted in junos?
    Best Answer

    Posted 09-20-2018 10:54
    Hi
    No, it is not encrypted. The syslogs are sent in clear text format.


  • 3.  RE: Are remote sent logs encrypted in junos?

    Posted 09-21-2018 04:12
    Is not it insecure to send logs in cleartext? (say notifications in level 5)
    #notification
    #level


  • 4.  RE: Are remote sent logs encrypted in junos?

     
    Posted 09-21-2018 05:02

    The syslog standard is without encryption.  So when in use you typically send this along your private management or out of band network.

     

    Encrypted syslog is with rsyslog servers that support this typically using tls and certificates for the encryption method.   Your server then is not standard syslog of encrypted rsyslog supported.  

     

    Junos configuration of this is here.

    https://www.juniper.net/documentation/en_US/junos/topics/example/tls-syslog-protocol-configuring.html

     



  • 5.  RE: Are remote sent logs encrypted in junos?

    Posted 04-09-2019 11:19

    The Security Logs (security->logs->transport-protocol tls) are the only logs that are encrypted via TLS. It is unfortunate that the syslog messages (system->syslog) do not have an option for TLS transport. Clearly the device is capable of securing it as it is already being done for the Security Logs and it was deemed important to secure these messages.