8.4.1 - Network Device Logs

0.0(0)
studied byStudied by 0 people
learnLearn
examPractice Test
spaced repetitionSpaced Repetition
heart puzzleMatch
flashcardsFlashcards
Card Sorting

1/9

flashcard set

Earn XP

Description and Tags

Flashcards created to help understand the key concepts and definitions related to Network Device Logs as discussed in the lecture.

Study Analytics
Name
Mastery
Learn
Test
Matching
Spaced

No study sessions yet.

10 Terms

1
New cards

Network Device Logs

Valuable sources of performance, troubleshooting, and security auditing information.

2
New cards

System Log

Records startup events and changes to the configuration at the OS level.

3
New cards

Application Log

Records data for a single specific service like DNS, HTTP, or database.

4
New cards

Audit Log

Records use of authentication and authorization privileges, capturing success/failure events.

5
New cards

Performance/Traffic Logs

Records metrics for compute, storage, and network resources over a defined period.

6
New cards

TCP/IP Events

Network events logged to troubleshoot issues like IP conflicts.

7
New cards

User Account Compromise

If a user account is compromised, tied events in the log cannot be tied to the actual attacker.

8
New cards

Log Metadata

Includes date and time, category, and event ID of logged events.

9
New cards

Kernel Processes

Core processes of the operating system that may be logged in system logs.

10
New cards

OPNsense Security Appliance

Platform for viewing audit logs associated with user actions in network security.