News

Logs create coziness

stp2y0 Comments
Pile-T5


Logging creates a summary of the process. Usually stored in .txt.

<listgroup id="group_connection_info">
            <listrowcolumn label="Connection Information"/>
            <listrow id="id_stat_state">
                <listrowcolumn label="State:"/>
                <listrowcolumn label="Disconnected"/>
            </listrow>
            <listrow id="id_tunnel_mode_v4">
                <listrowcolumn label="Tunnel Mode (IPv4):"/>
                <listrowcolumn label="Not Available"/>
            </listrow>
            <listrow id="id_tunnel_mode_v6">
                <listrowcolumn label="Tunnel Mode (IPv6):"/>
                <listrowcolumn label="Not Available"/>
            </listrow>
            <listrow id="id_tunnel_dyn_exc">
                <listrowcolumn label="Dynamic Tunnel Exclusion:"/>
                <listrowcolumn label="Not Available"/>
            </listrow>
            <listrow id="id_tunnel_dyn_inc">
                <listrowcolumn label="Dynamic Tunnel Inclusion:"/>
                <listrowcolumn label="Not Available"/>
            </listrow>
            <listrow id="id_time_connected">
                <listrowcolumn label="Duration:"/>
                <listrowcolumn label="00:00:00"/>
            </listrow>
            <listrow id="id_session_disconnect">
                <listrowcolumn label="Session Disconnect:"/>
                <listrowcolumn label="None"/>
            </listrow>
            <listrow id="id_stat_mgmt_tun_state">
                <listrowcolumn label="Management Connection State:"/>
                <listrowcolumn label="Disconnected (disabled)"/>
            </listrow>
        </listgroup>
Enter fullscreen mode

Exit fullscreen mode

The file structure, I hope, is familiar to us… The very essence of the file displays the endpoints where the server is knocking. In the case, as in our case, with a VPN connection – we see ports (IPv4/IPv6) and traffic tunneling cases.

Logs are often used in testing and secure development. You can see attempts to communicate/hit the system via DDoS. They do not display internal parameters, only the fact of the event, date/time, port and protocol.

<acguiNotice module="com.cisco.anyconnect.presentation.vpn" type="update" timestamp="16.11.2021 20:58:17" state="Neutral"> – example of normal connection.

<acguiNotice module="com.cisco.anyconnect.presentation.vpn" type="update" timestamp="18.11.2021 16:49:37" state="Error"> – example of a faulty connection.

When developing, it is useful to log the product and the development stage not only for reporting to the business customer, but also for yourself in the future. At work, I used Confluence/Jira to summarize tasks and developments.



Source link
lol

By stp2y

Leave a Reply

Your email address will not be published. Required fields are marked *

No widgets found. Go to Widget page and add the widget in Offcanvas Sidebar Widget Area.