Transmission of syslog messages over a one-way data link
First Claim
1. A send node for sending a syslog message to a receive node through a one-way data link, comprising:
- a UDP socket for receiving a first syslog message from a syslog sender, the first syslog message comprising a header portion including IP information for identifying the syslog sender and a data portion;
a syslog daemon for extracting the IP information of the syslog sender from the header portion of the received first syslog message, and inserting the extracted IP information of the syslog sender in the data portion of the received first syslog message, thereby generating a second syslog message, wherein the UDP socket is further configured to remove the header portion from the second syslog message generated by the syslog daemon, thereby generating a third syslog message; and
an interface to the one-way data link for sending the third syslog message to the receive node through the one-way data link.
6 Assignments
0 Petitions
Accused Products
Abstract
A special syslog daemon on a send node, wherein the send node is connected to a receive node by a one-way data link, the special syslog daemon configured to receive a syslog message from a syslog sender, insert a portion of IP information of the syslog sender in the body of the received syslog message and route the resulting syslog message to the one-way data link so that the resulting syslog message can be sent through the one-way data link to a syslog receiver communicatively coupled to the receive node. The present invention resolves the potential conflict between syslog and one-way data transfer applications that are configured to remove IP information from data prior to its passage through a one-way data link, thereby leading to a further enhancement of network security through their combination.
-
Citations
10 Claims
-
1. A send node for sending a syslog message to a receive node through a one-way data link, comprising:
-
a UDP socket for receiving a first syslog message from a syslog sender, the first syslog message comprising a header portion including IP information for identifying the syslog sender and a data portion; a syslog daemon for extracting the IP information of the syslog sender from the header portion of the received first syslog message, and inserting the extracted IP information of the syslog sender in the data portion of the received first syslog message, thereby generating a second syslog message, wherein the UDP socket is further configured to remove the header portion from the second syslog message generated by the syslog daemon, thereby generating a third syslog message; and an interface to the one-way data link for sending the third syslog message to the receive node through the one-way data link. - View Dependent Claims (2)
-
-
3. A one-way data transfer system, comprising:
-
a syslog sender for generating a first syslog message, the first syslog message comprising a header portion including IP information for identifying the syslog sender and a data portion; a send node comprising (1) a UDP socket for receiving the first syslog message from the syslog sender, and (2) a syslog daemon for extracting the IP information of the syslog sender from the header portion of the first syslog message and inserting the extracted IP information of the syslog sender in the data portion of the first syslog message, thereby generating a second syslog message, wherein the UDP socket is further configured to remove the header portion from the second syslog message generated by the syslog daemon, thereby generating a third syslog message; and a one-way data link for unidirectional transfer of the third syslog message from the send node to a receive node. - View Dependent Claims (4, 9)
-
-
5. A machine readable medium having instructions stored on a send node for sending a syslog message to a receive node through a one-way data link, the instructions, when executed by the send node, causing the send node to:
-
receive a first syslog message from a syslog sender, the first syslog message comprising a header portion including IP information for identifying the syslog sender and a data portion; extract the IP information of the syslog sender from the header portion of the received first syslog message; insert the extracted IP information of the syslog sender in the data portion of the received first syslog message, thereby generating a second syslog message; remove the header portion from the second syslog message, thereby generating a third syslog message; and send the third syslog message to the receive node through the one-way data link. - View Dependent Claims (6)
-
-
7. A method of transmitting a syslog message from a syslog sender to a syslog receiver through a one-way data link, comprising the steps of:
-
receiving a first syslog message from the syslog sender, the first syslog message comprising a header portion including IP information for identifying the syslog sender and a data portion; extracting the IP information of the syslog sender from the header portion of the received first syslog message; inserting the extracted IP information of the syslog sender in the data portion of the received first syslog message, thereby generating a second syslog message; removing the header portion from the second syslog message, thereby generating a third syslog message; and sending the third syslog message to the syslog receiver through the one-way data link. - View Dependent Claims (8, 10)
-
Specification