The firewall log password command configures the encryption function on the FW for sending logs.
The undo firewall log password command disables the encryption function on the FW for sending logs.
| Parameter | Description | Value |
|---|---|---|
password |
Specifies the encryption password. |
The value is a string that contains 8 to 32 characters. To enhance security, a password must meet the minimum strength requirements, that is, the password needs to contain at least three types of the following characters: uppercase letters (A to Z), lowercase letters (a to z), digits (0 to 9), and special characters, such as exclamation points (!), at signs (@), number signs (#), dollar signs ($), and percent (%). |
encryption |
Indicates encryption enhancement. Encryption enhancement features a higher security and is recommended. Before configuring encryption enhancement, verify whether the log server supports this function. If you have configured this function, whereas the log server does not support it, the log server may fail to parse logs. Encryption enhancement is supported in eLogV2R5C00SPC200 or a later version. |
- |
After you run this command, the FW will use the specified encryption password to encrypt the logs before sending. After receiving the binary logs, the log host will use the decryption password to decrypt the logs. This ensures the log transmission security. The encryption password specified on the FW and the decryption password specified on the log host must be the same.