Reset Search
 

 

Article

How to configure syslog server on a VDX switch

« Go Back

Information

 
TitleHow to configure syslog server on a VDX switch
Objective
How to configure a VDX switch to forward all RASLog messages to a syslog server.
Environment
  • Network OS
  • VDX
Procedure
  1. Execute the configure terminal command to access the global configuration.
    switch# configure terminal 
    Entering configuration mode terminal
  2. Type the logging syslog-server command to add a server.
    switch(config)# logging syslog-server <IP of server>

VERIFICATION STEPS

To verify that the VDX is sending out SYSLOG messages, perform the following:

1.) Open two remote sessions (Telnet/SSH) to the VDX
2.) Access FOS Bash
sw0# unhide foscmd
Password: ******** (fibranne)
sw0# fos bash
3.) Verify the Interface configuration for Eth0 matches your Management Interface
bash-2.04# ifconfig
eth0      Link encap:Ethernet  HWaddr 50:EB:1A:2C:32:C7  
          inet addr:10.26.143.28  Bcast:10.26.255.255  Mask:255.255.128.0
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:38331353 errors:0 dropped:89848 overruns:0 frame:0
          TX packets:456067 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000 
          Memory:fe4e8000-fe4e8fff 
4.) Initiate TCP Dump
bash-2.04# tcpdump -nevi eth0 -s0 port 514
5.) On second remote session trigger an event that will generate a syslog entry i.e. bounce an interface
6.) On first remote session, verify that syslog traffic is being sent out the management interface:
bash-2.04#tcpdump -nevi eth0 -s0 port 514
tcpdump: listening on eth0, link-type EN10MB (Ethernet), capture size 65535 bytes
17:01:39.619300 50:eb:1a:02:3c:c7 > 00:04:96:83:9e:2d, ethertype IPv4 (0x0800), length 463: (tos 0x0, ttl 64, id 39182, offset 0, flags [DF], proto UDP (17), length 449)
10.26.143.28.51001 > <SYSLOG_SERVER_IP>.514: SYSLOG, length: 421
Facility local7 (23), Severity info (6)
Msg: Jan 21 17:01:39 sw0 raslogd: [log@1588 value="RASLOG"][timestamp@1588 value="2020-01-21T17:01:39.611528"][msgid@1588 value="NSM-1020"][seqnum@1588 value="4103"][attr@1588 value=" SW/0 | Active | DCE | WWN 10:00:50:eb:1a:02:3c:8c"][severity@1588 value="INFO"][swname@1588 value="sw0"][arg0@1588 value="TenGigabitEthernet 1/0/15" desc="InterfaceName"] BOM Interface TenGigabitEthernet 1/0/15 is administratively down.\0x0a
17:01:39.619359 50:eb:1a:02:3c:c7 > 00:04:96:83:9e:2d, ethertype IPv4 (0x0800), length 452: (tos 0x0, ttl 64, id 39183, offset 0, flags [DF], proto UDP (17), length 438)
10.26.143.28.51001 > <SYSLOG_SERVER_IP>.514: SYSLOG, length: 410
Facility local7 (23), Severity info (6)
Msg: Jan 21 17:01:39 sw0 raslogd: [log@1588 value="RASLOG"][timestamp@1588 value="2020-01-21T17:01:39.611618"][msgid@1588 value="NSM-1003"][seqnum@1588 value="4104"][attr@1588 value=" SW/0 | Active | DCE | WWN 10:00:50:eb:1a:02:3c:8c"][severity@1588 value="INFO"][swname@1588 value="sw0"][arg0@1588 value="TenGigabitEthernet 1/0/15" desc="InterfaceName"] BOM Interface TenGigabitEthernet 1/0/15 is link down. \0x0a
17:01:39.633831 50:eb:1a:02:3c:c7 > 00:04:96:83:9e:2d, ethertype IPv4 (0x0800), length 685: (tos 0x0, ttl 64, id 39184, offset 0, flags [DF], proto UDP (17), length 671)
10.26.143.28.51001 > <SYSLOG_SERVER_IP>.514: SYSLOG, length: 643
Facility local7 (23), Severity info (6)




 
Additional notes
IPv4 or IPv6 addresses can be used for the server IP address.
switch# configure terminal
Entering configuration mode terminal
switch(config)# logging syslog-server 2001:DB8::32

 

Feedback

 

Was this article helpful?


   

Feedback

Please tell us how we can make this article more useful.

Characters Remaining: 255