Textual Conventions for Syslog Management
RFC 5427
| Document | Type | RFC - Proposed Standard (March 2009; No errata) | |
|---|---|---|---|
| Author | Glenn Mansfield | ||
| Last updated | 2015-10-14 | ||
| Stream | IETF | ||
| Formats | plain text html pdf htmlized bibtex | ||
| Stream | WG state | (None) | |
| Document shepherd | No shepherd assigned | ||
| IESG | IESG state | RFC 5427 (Proposed Standard) | |
| Action Holders |
(None)
|
||
| Consensus Boilerplate | Unknown | ||
| Telechat date | |||
| Responsible AD | Pasi Eronen | ||
| Send notices to | (None) | ||
Network Working Group G. Keeni
Request for Comments: 5427 Cyber Solutions Inc.
Category: Standards Track March 2009
Textual Conventions for Syslog Management
Status of This Memo
This document specifies an Internet standards track protocol for the
Internet community, and requests discussion and suggestions for
improvements. Please refer to the current edition of the "Internet
Official Protocol Standards" (STD 1) for the standardization state
and status of this protocol. Distribution of this memo is unlimited.
Copyright Notice
Copyright (c) 2009 IETF Trust and the persons identified as the
document authors. All rights reserved.
This document is subject to BCP 78 and the IETF Trust's Legal
Provisions Relating to IETF Documents in effect on the date of
publication of this document (http://trustee.ietf.org/license-info).
Please review these documents carefully, as they describe your rights
and restrictions with respect to this document.
This document may contain material from IETF Documents or IETF
Contributions published or made publicly available before November
10, 2008. The person(s) controlling the copyright in some of this
material may not have granted the IETF Trust the right to allow
modifications of such material outside the IETF Standards Process.
Without obtaining an adequate license from the person(s) controlling
the copyright in such materials, this document may not be modified
outside the IETF Standards Process, and derivative works of it may
not be created outside the IETF Standards Process, except to format
it for publication as an RFC or to translate it into languages other
than English.
Abstract
This MIB module defines textual conventions to represent Facility and
Severity information commonly used in syslog messages. The intent is
that these textual conventions will be imported and used in MIB
modules that would otherwise define their own representations.
Keeni Standards Track [Page 1]
RFC 5427 Syslog MIB-TC March 2009
Table of Contents
1. The Internet-Standard Management Framework ......................2
2. Background ......................................................2
3. The Syslog Textual Conventions MIB ..............................3
4. Security Considerations .........................................7
5. IANA Considerations .............................................7
6. References ......................................................8
6.1. Normative References .......................................8
6.2. Informative References .....................................8
7. Acknowledgments .................................................8
1. The Internet-Standard Management Framework
For a detailed overview of the documents that describe the current
Internet-Standard Management Framework, please refer to section 7 of
RFC 3410 [RFC3410].
Managed objects are accessed via a virtual information store, termed
the Management Information Base or MIB. MIB objects are generally
accessed through the Simple Network Management Protocol (SNMP).
Objects in the MIB are defined using the mechanisms defined in the
Structure of Management Information (SMI). This memo specifies a MIB
module that is compliant to the SMIv2, which is described in STD 58,
RFC 2578 [RFC2578], STD 58, RFC 2579 [RFC2579] and STD 58, RFC 2580
[RFC2580].
2. Background
Operating systems, processes, and applications, collectively termed
"Facilities" in the following, generate messages indicating their own
status or the occurrence of events. These messages have come to be
known as syslog messages. A syslog message in general will contain
among other things a code representing the Facility that generated
the message and a code representing the Severity of the message. The
Facility and the Severity codes are commonly used to categorize and
select received syslog messages for processing and display. The
Facility codes have been useful in qualifying the originator of the
content of the messages but in some cases they are not specific
enough to explicitly identify the originator. Implementations of the
syslog protocol [RFC5424] that contain structured data elements
(SDEs) should use these SDEs to clarify the entity that originated
the content of the message.
This document defines a set of textual conventions (TCs) that can be
used to represent Facility and Severity codes commonly used in syslog
messages.
Keeni Standards Track [Page 2]
RFC 5427 Syslog MIB-TC March 2009
The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT",
Show full document text