Specifications

March 15, 2011 Page 1 of 13

Configuring Syslog

Thisdocumentprovidesthe followinginformationaboutconfiguringandmonitoringSyslogon

Enterasys

N‐Series,S‐Series,andK‐Seriesmodularswitches,A‐Series,B‐Series,C‐Series

stackablefixedswitches,andD‐Series,G‐Series,andI‐Seriesstandalonefixedswitches.

What Is Syslog?

Syslog,shortforSystemLogging,isastandardforforwardinglogmessagesinanIPnetworkthat

istypicallyusedfornetworksystemmanagementandsecurityauditing.Thetermoftenappliesto

boththeactualSyslogprotocol,aswellastheapplicationsendingSyslogmessages.

AsdefinedinRFC3164,the

Syslogprotocolisaclient/server‐typeprotocolwhichenablesastation

ordevicetogenerateandsendasmalltextualmessage(lessthan1024bytes)toaremotereceiver

calledtheSyslogserver.MessagesaretransmittedusingUserDatagramProtocol(UDP)packets

andarereceivedonUDPport514.Thesemessages

informaboutsimplechangesinoperational

statusorwarnofmoresevereissuesthatmayaffectsystemoperations.

Why Would I Use Syslog in My Network?

Whenmanagedproperly,logsaretheeyesandearsofyournetwork.Theycaptureeventsand

showyouwhenproblemsarise,givingyouinformationyouneedtomakecriticaldecisions,

whetheryouarebuildingapolicyruleset,finetuninganIntrusionDetectionSystem,or

validatingwhichportsshouldbeopen

onaserver.However,sinceitispracticallyimpossibleto

wadethroughthevolumesoflogdataproducedbyallyourserversandnetworkdevices,Syslog’s

abilitytoplacealleventsintoasingleformatsotheycanbeanalyzedandcorrelatedmakesita

vitalmanagementtool.BecauseSyslog

issupportedbyawidevarietyofdevice sand receivers

For information about... Refer to page...

What Is Syslog? 1

Why Would I Use Syslog in My Network? 1

How Do I Implement Syslog? 2

Syslog Overview 2

Syslog Operation on Enterasys Devices 2

Syslog Components and Their Use 3

Interpreting Messages 6

Configuring Syslog 6

Note: For information about logging on the X-Series, refer to the X-Series Configuration Guide.