User`s guide

Interpreting Messages

6-2 Managing Syslog

Syslog Terms and Definitions

Table 6‐1liststermsanddefinitionsusedinSyslogconfiguration.

Interpreting Messages

EverysystemmessagegeneratedbytheMatrixDFESeriesorN‐SAdevicefollowsthesamebasic

format:

Table 6-1 Syslog Terms and Definitions

Term Definition

Facility The Syslog specification uses a facility code to categorize which functional process

is generating an error message. Syslog combines the facility and severity values to

determine message priority. The Matrix DFE Series and N-SA implementation uses

the eight facility designations reserved for local use: local0 - local7. Default is

local4. For more information about facility designations, refer to RFC 3164.

Severity A value used to indicate the severity of the error condition generating the Syslog

message. The Matrix DFE Series and N-SA implementation provides the following 8

levels:

1 - emergencies (system is unusable)

2 - alerts (immediate action required)

3 - critical conditions

4 - error conditions

5 - warning conditions

6 - notifications (significant conditions)

7 - informational messages

8 - debugging messages

Application Client process for which Syslog is tracking error conditions. Supported applications

and their associated CLI mnemonic values are:

RtrAcl - Access Control Lists

CLI - Command Line Interface

SNMP - Simple Network Management Protocol

Webview - Enterasys Web-based system management

System - System messages

RtrFe - Router Forwarding Engine

Trace - Trace logging

RtrLSNat - Load Share Network Address Translation

FlowLimt - Flow limiting

UPN - User Personalized Networks

Syslog server A remote server configured to collect and store Syslog messages. The Matrix DFE

Series and N-SA implementation allows up to 8 server IP addresses to be configured

for Syslog.