STIGhubSTIGhub
STIGsSearchCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 3 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to Central Log Server Security Requirements Guide

V-206513

CAT II (Medium)

The Central Log Server that aggregates log records from hosts and devices must be configured to use TCP for transmission.

Rule ID

SV-206513r961863_rule

STIG

Central Log Server Security Requirements Guide

Version

V3R4

CCIs

CCI-000366

Discussion

If the default UDP protocol is used for communication between the hosts and devices to the Central Log Server, then log records that do not reach the log server are not detected as a data loss. The use of TCP to transport log records to the log servers improves delivery reliability, adds data integrity, and gives the option to encrypt the traffic if the log server communication is not protected using a management network (preferred) or VPN based on mission requirements.

Check Content

Examine the configuration.

Verify the Central Log Server is configured to use TCP.

If the Central Log Server is not configured to use TCP, this is a finding.

Fix Text

Configure the Central Log Server that aggregates log records from hosts and devices to use TCP for transmission.