Research Article
Priority Based Delivery of PR-SCTP Messages in a Syslog Context
@INPROCEEDINGS{10.1007/978-3-642-20931-4_23, author={Mohammad Rajiullah and Anna Brunstrom and Stefan Lindskog}, title={Priority Based Delivery of PR-SCTP Messages in a Syslog Context}, proceedings={International Workshop on Autonomic Networking and Self-Management in the Access Networks}, proceedings_a={SELFMAGICNETS}, year={2012}, month={10}, keywords={Syslog PR-SCTP performance evaluations transport service}, doi={10.1007/978-3-642-20931-4_23} }- Mohammad Rajiullah
Anna Brunstrom
Stefan Lindskog
Year: 2012
Priority Based Delivery of PR-SCTP Messages in a Syslog Context
SELFMAGICNETS
Springer
DOI: 10.1007/978-3-642-20931-4_23
Abstract
Unquestionably, syslog provides the most popular and easily manageable computer system logging environment. In a computer network, syslog messages are used for several purposes such as for optimizing system performance, logging user’s actions and investigating malicious activities. Due to all these essential utilities, a competent transport service for syslog messages becomes important. Most of the current syslog implementations use either the unreliable UDP protocol or the more costly reliable TCP protocol. Neither of these protocols can provide both timeliness and reliability, while transporting inherently prioritized syslog messages in a congested network. In this paper, we both propose and evaluate the use of PR-SCTP, an existing partial reliability extension of the SCTP transport protocol, as a candidate transport service for the next generation syslog standard. In our emulation based experimental results, PR-SCTP shows better performance than TCP in terms of average delay for message transfer. Furthermore, PR-SCTP exhibits less average packet loss than UDP. In both cases, PR-SCTP exploits priority properties of syslog messages during loss recovery.
