Intelimax+4G User Manual
- 44 -
•
The Intelimax+ also send syslog data to a syslog server according to RFC5424,
RFC5425 and RFC6587. The event types are: auth, authpriv, cron, daemon, kern,
mark, security. The default payload size is 480 octets.
•
By default, the remote system logs are without encryption. Encryption can be
enabled by installing TLS certificates using the process described below. The
secured syslog client uses TCP port 6514.
How to configure the secure syslog client
1.
Create the certification file for upload to the Intelimax+. The certificate files
should be placed into a folder along with a path.txt file.
2.
The path .txt file should only contain the text “extra”.
3.
Zip this folder, then upload to the Intelimax+ using the ‘Partial upload’ button in
the GUI, then reboot the modem.
4.
Enable ‘Secure’ under remote syslog dropdown. If the Intelimax+ has the valid
certification files, then it will change from UDP unsecure syslog (on port 514) to
TCP secure syslog with TLS encryption (on port 6514).
5.
Once the modem has rebooted the uploaded certificates can be seen on the
status page under the ‘Extra’ section.
Note: To remove the certificates, upload a .zip file with one file, a path.txt file with the
text “-extra”.
How to generate SSL certificates:
A SSL certificate can be generated using an application such as OpenSSL
(http://slproweb.com/products/Win32OpenSSL.html, the lite version is fine). This
application can be run from the command line for example:
•
To generate root certificate (ca.pem):
o
C:\OpenSSL-Win32\bin>openssl genrsa -out ca.key 4096
To Next Page
Loading...