Avaya Vantage™ supports encryption of syslog messages using TLS-based transport security, as described in RFC 5425. When data in transit is encrypted using TLS enforcement and runs over TCP, it ensures the security and reliability of the syslog messages.

By default, Avaya Vantage™ sends syslog messages over UDP. You can use the LOGSRVR_SECURE parameter to enable secure remote logging of syslog messages. You can set the LOGSRVR_SECURE parameter to one of the following values:

• 0: To send unsecured syslog messages over UDP. This is the default value.

• 1: To send secured syslog messages over TLS.

The Settings menu on the device provides the option to specify the FQDN, IPv4, or IPv6 address and the port number for storing syslog messages.

Secure syslog configuration example

The following is an example of parameter settings to enable secure remote logging of syslog messages:

• SYSLOG_ENABLED: Set to 1 to enable remote logging of syslog messages.

• LOGSRVR: Set the FQDN, IPv4, or IPv6 address and the port number of the remote server to store syslog messages. The port number is optional. If you do not specify the port, the default port is 514 when LOGSRVR_SECURE is set to 0 and 6514 when LOGSRVR_SECURE is set to 1.

• LOGSRVR_SECURE: Set to 1 to send secured syslog messages.

For more information about the configuration parameters for syslog, see Appendix A: Logging and debugging parameters.

To establish TLS connections with the syslog server, Avaya Vantage™ authenticates the identity certificate from the syslog server. If ENABLE_PUBLIC_CA_CERTS is set to 0, ensure that TRUSTCERTS includes the root CA certificate of the syslog server.