Oracle Cloud Infrastructure recently has introduced the VPN Connect Logging new feature on 8th March 2021.
Logs display log activity and the details of each logged event within a specified time frame. Logs enable you to understand what rules and countermeasures are triggered by requests and are used as a basis to move request handling into block mode.
Oracle Cloud Infrastructure Logging service is a highly scalable and fully managed single pane of glass for all the logs in your tenancy. Logging provides access to logs from Oracle Cloud Infrastructure resources.
In this blog post we will discuss the following topics:
- What is Logs
- Types of Logs
- Overview of Logging
- Concepts of Logging
- Logging Limits
- Enable or Disable VPN Connect Logging
What is Logs
Logs display log activity and therefore the details of every logged event within a fixed timeframe. Logs modify you to grasp what rules and countermeasures square measure triggered by requests and square measure used as a basis to moreover request handling into block mode. Logs will come back from Access management, Protection Rules, or larva events.
A log is a first-class Oracle Cloud Infrastructure resource that stores and captures log events collected in a given context. Log groups are logical containers for organizing logs. Logs must always be inside log groups. You must create a log group to enable a log.
Oracle has introduced VPN FastConnect Logging option. Now you can also see the FastConnect logs in your account.
Types Of Logs
There are 3 types of Logs available:
- Audit Logs: Logs related to the events emitted by the OCI Audit service. These logs are available from the Logging Audit page or are searchable on the Search page alongside the rest of your logs.
- Service Logs: Emitted by OCI native services, such as API Gateways, Load Balancing, Events, Functions, Object Storage, VPN Connect, and VCN flow Logs. These services Logging categories are pre-defined and you can Enable or Disable them.
- Custom logs: Logs that contain diagnostic data from custom applications, different cloud suppliers, or Associate in Nursing on-premise setting. Custom logs are often eaten through the API, or by configuring the Unified watching Agent. you’ll be able to assemble Associate in Nursing OCI figure instance/resource to directly transfer Custom Logs through the Unified watching Agent. Custom logs are supported in each virtual machine and bare metal state of affairs.
Overview of Logging
The Oracle Cloud Infrastructure work service could be an extremely ascendable and absolutely managed single pane of glass for all the logs in your abidance. work provides access to logs from Oracle Cloud Infrastructure resources. These logs embody important diagnostic info that describes however resources square measure playing and being accessed.
Concepts of Logging
- Service Logs: Critical diagnostic information from supported Oracle Cloud Infrastructure services
- Custom Logs: Diagnostic information from other cloud providers, custom application. To take custom logs you can directly call API.
- Audit Logs: Read-only logs from the Audit service, provided for you to analyze and search. It captures the API call made by your tenancy.
- Log Groups: It is logical containers for Logs. Log groups can move from one compartment to another.
- Service Log Category: Services provide log categories for the different types of logs available for resources.
- Service Connector Hub: It moves logging data to another service in OCI.
- Unified Monitoring Agent: The fluent-based agent that runs on customer machines (OCI instances), to help customers ingest custom logs.
- Agent Configuration: A configuration of the Unified Monitoring Agent that specifies how custom logs are ingested.
Logging Limits
There are Limits to create Logs in your tenancy
- Logs 500 logs per tenancy
- Log groups 100 log groups per tenancy
Steps to Enable and Disable VPN Connect Logging
1. Open the navigation menu. Under Core Infrastructure, go to Networking and click VPN Connections.
2. A list of the IPSec connections in the compartment that you’re viewing is displayed. If you don’t see the one you’re looking for, verify that you’re viewing the correct compartment (select from the list on the left side of the page).
3. For the IPSec connection you’re interested in, click the name of the connection. The details page for the connection is displayed.
4. On the left side of the screen under Resources, click on Logs.
If you do not see this option, the connection has the older VPN Connect v1 type. Message logging requires VPN Connect v2.
5. On the Logs details page, set the Enable Log field to Enabled. A new screen appears.
Details for the options on the screen are at Enabling Logging for a Resource. Logs are handled the same regardless of the resource type generating the log.
6. Click Enable Log.
View Log Messages From Console:
1. Open the navigation menu. Under Core Infrastructure, go to Networking and click VPN Connections.
2. A list of the IPSec connections in the compartment that you’re viewing is displayed. If you don’t see the one you’re looking for, verify that you’re viewing the correct compartment (select from the list on the left side of the page).
3. On the left side of the screen under Resources, click on Logs.
If you do not see this option, the connection has the older VPN Connect v1 type. Message logging requires VPN Connect v2.
4. Click on the Log Name of the log you are interested in. This will open a new browser tab showing the requested log.
I hope you find this blog useful in understanding the new release of VPN Connect Logging and how to Enable or Disable it. If you have any doubts, please post them in the comments section.
Related/References
- 1Z0-1072-20 | Oracle Cloud Infrastructure 2020 Architect Associate
- VCN Flow Logs for Oracle Cloud Infrastructure
- Network Security Groups (NSGs) Vs. Security List (SL): When to use What?
- Oracle Cloud Infrastructure (OCI): Region, AD, FD, Tenancy, Compartment, VCN, IAM, Storage Service
- Networking In Oracle Cloud (OCI): VCN, Subnet, Gateways, Peering, Transit Routing
- Announcing VCN flow logs general availability for Oracle Cloud Infrastructure
Next Task For You
Begin your journey towards becoming an Oracle Cloud Architect by Joining the FREE Masterclass on How To Become Oracle Cloud Architect in 8 Weeks.
Click on the image below to Register for the FREE Masterclass NOW!
The post Oracle Cloud: VPN Connect Logging Now Available appeared first on Cloud Training Program.