Network Management and Monitoring
-
Support for syslog over TLS (EX Series, MX Series, PTX Series, and QFX Series)—Starting in Junos OS Release 21.2R1, you can transport syslog (control plane) over Transport Layer Security (TLS) protocol. Encapsulating syslog over TLS allows you to:
-
Validate the remote destination (syslog server) before transmitting any sensitive syslog information. (Authentication)
-
Encrypt the syslog during the transport. (Encryption)
-
Verify that the data has not been modified or tampered with (Integrity)
Before you enable this feature, ensure you:
-
Configure public key infrastructure (PKI) in Junos
-
Configure and load the digital certificates
-
Configure the remote destination (syslog server) that supports syslog over TLS
To enable transport of syslog (control plane) over TLS, use the
tls
statement at the [edit system syslog host host-name transport
] hierarchy level. -