Bastionhost:FAQ about logs and audit

How do I store Bastionhost O&M logs in Simple Log Service?

Configure the Log Audit Service in Simple Log Service to collect and store Bastionhost O&M logs in a dedicated Logstore:

1. If Simple Log Service is not activated, log on to the Simple Log Service console and activate it.

2. In the Log Application section, click the Audit & Security tab, and then click Log Audit Service.

3. On the Global Configurations tab, configure log collection:

   1. In the Region of the Central Project drop-down list, select a region.

   2. Find Bastion Host in the Cloud Products column, turn on Operations Log, set the retention period in the Storage Type column, and then click Save.

4. (Optional) View the collected O&M logs:

   1. In the left-side navigation bar, click the audit query icon.

   2. Choose Central > Bastion Host.

   3. View logs on the bastion_log page.

How long can I store audit videos on a Bastionhost instance?

The storage duration depends on the available storage space. A Bastionhost instance (V3.2) comes with a default storage allocation. To increase storage capacity, purchase an extra storage plan. For details, see Upgrade a bastion host.

Bastionhost instances store raw O&M protocol data. Storage consumption depends on traffic:

Why does "Unable to access this website" appear when I view an audit video?

Port 9443, which is used for video playback, is blocked by Cloud Firewall. Configure an access control policy in Cloud Firewall to allow traffic on port 9443. For details, see Configure access control policies in scenarios in which Cloud Firewall is deployed together with Bastionhost.

Can Bastionhost audit file uploads and downloads performed with scp?

Yes. Configure your server to allow Bastionhost to audit scp operations. For details, see Best practices for auditing scp-based operations by using Bastionhost.