Managing Systems and Workgroups: A Guide for HP-UX System Administrators
Configuring a System
Using Distributed Systems Administration Utilities
Chapter 3 205
clients. Refer to section “Configuring a Log Consolidation Standalone
Server with clog_wizard” on page 192 for a discussion of the
max-connections() setting.
If you answer “yes” to using TCP, the next question asks for the TCP port
to forward messages to:
You need to find out from the administrator of the
consolidation server the TCP port that was configured
for log receiving.
Enter the TCP port configured on the CONSOLIDATOR for
log receiving? []: 1776
You must use the TCP port selected by the system administrator of the
log consolidation server. If the clog_wizard was used to configure the
server, the port number is saved in /etc/rc.config.d/syslog-ng as
the variable CLOG_TCP_PORT. In this example, TCP port 1776 was
used.
If you answer “yes” to the TCP question, the following question is
displayed:
The TCP protocol can be used in conjunction with Secure
Shell port forwarding to enhance security. Each member
of this cluster must already have non interactive Secure
Shell Authentication set up with the consolidator. You
can use the tool /opt/dsau/bin/csshsetup to configure
non interactive Secure Shell Authentication.
Do you want to configure Secure Shell port forwarding?
(y/n) [y]:
Choose yes in order to use ssh port forwarding. This will encrypt all the
traffic sent from this local log forwarding client to the log consolidator.
NOTE A special ssh security configuration is required on the server when a
Serviceguard cluster is the log consolidation server. For details, refer to
“ssh Port Forwarding” on page 235.