The page has been translated by Gen AI.
Overview
Service Overview
Log Transmission collects and stores logs in real time from firewalls, IPS, DDoS security devices, and transmits them to the area needed by the customer as a service. It provides a foundation for performing security monitoring of the user area using those logs.
Features
- Security event log collection/transmission: Collect/store logs from security devices in real time and transmit security events.
- Secure Log Storage/Transmission: Log data can be stored securely, and backup and recovery are possible when needed. Collected logs are safely stored in a redundant storage, and data is utilized using VPN services, etc. Sending safely.
Diagram
Provided Features
We provide the following features.
- Various security log source integration
- Real-time log collection from various log sources such as firewalls, IPS, DDoS security devices, etc.
- Log filtering and processing
- Filter out unnecessary logs or extract only the logs requested by the customer
Components
Log Transmission sends service log sources from Samsung Cloud Platform to the equipment or system desired by the customer.
- The service runs by connecting via VPN to the customer’s office (server room) where the device that receives the log source is located.
Constraints
To use Log Transmission, please check the following items in advance.
- Collect and send logs targeting Security products provided by Samsung Cloud Platform.
- To send logs, you must be connected via VPN to the device that will receive the logs.
Region-wise Provision Status
Log Transmission is available in the environment below.
| Region | Availability |
|---|---|
| Korea West (kr-west1) | Provided |
| Korea East (kr-east1) | Not provided |
| South Korea South1(kr-south1) | Not provided |
| South Korea South2(kr-south2) | Not provided |
| South Korea 3 (kr-south3) | Not provided |
Table. Log Transmission Regional Provision Status
Preliminary Service
This is a list of services that must be pre-configured before creating the Log Transmission service. For details, refer to the guide provided for each service and prepare in advance.
| Service Category | Service | Detailed Description |
|---|---|---|
| Networking | Direct Connect | A service that safely and quickly connects the customer’s network with Samsung Cloud Platform. |
| Security | DDoS Protection | Large-scale network traffic attack detection and response service |
| Security | IPS | A service that detects and responds to intrusions on websites and application servers in real time. |
| Security | Secured Firewall | Next-generation firewall service that meets high security requirement levels |
Table. Log Transmission Pre-service
- Log Transmission when executed, you must select the service to which logs should be sent. When the log transmission service target is determined, a VPN connection is required for secure log transmission.
- Log Transmission service usage requires configuration work for communication between the client company’s Office (On-premise) and the client VPC within Samsung Cloud Platform. Please follow the process below, such as external integration software and VPN settings, Direct Connect firewall opening, to apply for an uplink line.
- Direct Connect Create the service.
- Create a connection between the client company’s VPC and DCon-VPN.
- Apply for an uplink line for communication between the client company’s on-premise and VPC.
- Application path: Support Center > Service Request List > Service Request
- Select Service: Networking > Direct Connect
- Task type: Uplink line request
- Proceed with the routing configuration of the VPN path.
- Firewall, Security Group, Direct Connect etc. configure the necessary routing information.
Reference
Direct Connect creation and Uplink line application must be completed to use the Log Transmission service.