{"id":349,"date":"2022-03-29T15:30:37","date_gmt":"2022-03-29T12:30:37","guid":{"rendered":"http:\/\/yusufziyagulec.com\/blog\/?p=349"},"modified":"2022-05-18T15:58:57","modified_gmt":"2022-05-18T12:58:57","slug":"vcenter-7-esx-syslog-konfigurasyounu-ve-firewall-ruleset-tanimi","status":"publish","type":"post","link":"https:\/\/yusufziyagulec.com\/blog\/vcenter-7-esx-syslog-konfigurasyounu-ve-firewall-ruleset-tanimi\/","title":{"rendered":"vCenter 7 & ESX Syslog Konfig\u00fcrasyounu ve Firewall Ruleset Tan\u0131m\u0131"},"content":{"rendered":"

vCenter 7 ve ESX’lerde Syslog tan\u0131m\u0131 yapmak i\u00e7in a\u015fa\u011f\u0131daki ad\u0131mlar izlenir:<\/p>\n

vCenter<\/strong><\/p>\n

VAMI ara y\u00fcz\u00fcnden yap\u0131l\u0131r. Standart olarak eri\u015fim https:\/\/<vCenter IP>:5480<\/p>\n

Sol men\u00fcde Syslog se\u00e7ene\u011fine t\u0131klayarak Syslog sunucunun IP’si ve haberle\u015fme portu tan\u0131mlan\u0131r.<\/p>\n

\"\"<\/p>\n

\"\"<\/p>\n

ESXi<\/strong><\/p>\n

ESXi Syslog konfig\u00fcrasyonu vCenter veya ESX \u00fczerinden yap\u0131labilir. vCenter \u00fczerinden konfig\u00fcrasyonu yapmak i\u00e7in:<\/p>\n

\u0130lgili ESX host’ta Configure –> Advanced System Settings –> Syslog.global.logHost parametresi uygun \u015fekilde d\u00fczenlenir. \u00d6rn:<\/p>\n

tcp:\/\/10.0.0.120:514<\/p>\n

E\u011fer standart bir Syslog port tan\u0131m\u0131 (UDP 514) mevcutsa ESX loglar\u0131 Syslog sunucusuna akmaya ba\u015flayacakt\u0131r. Ancak g\u00fcvenlik nedeniyle syslog ileti\u015fim portu network katman\u0131nda de\u011fi\u015ftirilmi\u015fse, ESX firewall ayarlar\u0131nda yeni bir kural setiyle konfig\u00fcrasyon yapmak gerekir:<\/p>\n

Standart olan UDP 514 portunu TCP 6530 olarak de\u011fi\u015ftirildi\u011fini varsayal\u0131m. ESX’lere bu firewall kural setini eklemek i\u00e7in a\u015fa\u011f\u0131daki ad\u0131mlar izlenir:<\/p>\n

1- SyslogFirewallConfig.xml isminde bir dosya olu\u015fturulup dosya bir edit\u00f6rle a\u015fa\u011f\u0131daki \u015fekilde d\u00fczenlenir:<\/p>\n

<ConfigRoot><\/strong><\/em>
\n<service><\/strong><\/em>
\n<id>ServiceName<\/id><\/strong><\/em>
\n<rule id=’0000′>outbound<\/direction><\/strong><\/em>
\n<protocol>tcp<\/protocol><\/strong><\/em>
\n<porttype>dst<\/porttype><\/strong><\/em>
\n<port>6530<\/port><\/strong><\/em>
\n<\/rule><\/strong><\/em>
\n<enabled>true<\/enabled><\/strong><\/em>
\n<required>false<\/required><\/strong><\/em>
\n<\/service><\/strong><\/em>
\n<\/ConfigRoot><\/strong><\/em><\/p>\n

2- SyslogFirewallConfig.xml dosyas\u0131 WinSCP gibi bir uygulama yard\u0131m\u0131yla her bir ESX hosttaki a\u015fa\u011f\u0131daki alana kopyalan\u0131r:<\/p>\n

\/etc\/vmware\/firewall\/<\/p>\n

3- Yeni kural setinin aktif olmas\u0131 i\u00e7in ESX hostlarda a\u015fa\u011f\u0131daki komut \u00e7al\u0131\u015ft\u0131r\u0131l\u0131r:<\/p>\n

#esxcli network firewall refresh<\/p>\n

4- Yeni kural seti aktif oldu\u011funda loglar Syslog sunucusuna akmaya ba\u015flayacakt\u0131r. Yeni kural seti -e\u011fer do\u011fru \u015fekilde tan\u0131mland\u0131ysa- a\u015fa\u011f\u0131daki ekrandan g\u00f6r\u00fcnt\u00fclenebilir:<\/p>\n

ESX –> Configure –> Firewall –> Outgoing<\/p>\n

Ekledi\u011finiz kural halen g\u00f6r\u00fcnt\u00fclenemiyorsa a\u015fa\u011f\u0131daki komutlar\u0131 \u00e7al\u0131\u015ft\u0131rabilirsiniz:<\/p>\n

esxcli network firewall set –enabled false<\/em><\/strong>
\nesxcli network firewall unload<\/em><\/strong>
\nesxcli network firewall load<\/em><\/strong>
\nesxcli network firewall set –enabled true<\/em><\/strong>
\nesxcli network firewall refresh<\/em><\/strong><\/p>\n

\"\"\"\"<\/p>\n

Referanslar<\/strong><\/p>\n

https:\/\/kb.vmware.com\/s\/article\/2005304<\/a>
\n– https:\/\/docs.vmware.com\/en\/VMware-vSphere\/7.0\/com.vmware.vsphere.monitoring.doc\/GUID-9633A961-A5C3-4658-B099-B81E0512DC21.html<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

vCenter 7 ve ESX’lerde Syslog tan\u0131m\u0131 yapmak i\u00e7in a\u015fa\u011f\u0131daki ad\u0131mlar izlenir: vCenter VAMI ara y\u00fcz\u00fcnden yap\u0131l\u0131r. Standart olarak eri\u015fim https:\/\/<vCenter IP>:5480 Sol men\u00fcde Syslog se\u00e7ene\u011fine t\u0131klayarak Syslog sunucunun IP’si ve haberle\u015fme portu tan\u0131mlan\u0131r. ESXi ESXi Syslog konfig\u00fcrasyonu vCenter veya ESX \u00fczerinden yap\u0131labilir. vCenter \u00fczerinden konfig\u00fcrasyonu yapmak i\u00e7in: \u0130lgili ESX host’ta Configure –> Advanced System Settings… Continue reading →<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[43],"tags":[137,9],"class_list":["post-349","post","type-post","status-publish","format-standard","hentry","category-vmware-2","tag-syslog","tag-vcenter"],"_links":{"self":[{"href":"https:\/\/yusufziyagulec.com\/blog\/wp-json\/wp\/v2\/posts\/349","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/yusufziyagulec.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/yusufziyagulec.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/yusufziyagulec.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/yusufziyagulec.com\/blog\/wp-json\/wp\/v2\/comments?post=349"}],"version-history":[{"count":5,"href":"https:\/\/yusufziyagulec.com\/blog\/wp-json\/wp\/v2\/posts\/349\/revisions"}],"predecessor-version":[{"id":379,"href":"https:\/\/yusufziyagulec.com\/blog\/wp-json\/wp\/v2\/posts\/349\/revisions\/379"}],"wp:attachment":[{"href":"https:\/\/yusufziyagulec.com\/blog\/wp-json\/wp\/v2\/media?parent=349"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/yusufziyagulec.com\/blog\/wp-json\/wp\/v2\/categories?post=349"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/yusufziyagulec.com\/blog\/wp-json\/wp\/v2\/tags?post=349"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}