Syslog server is very needed by all network administrator. The main function is to know what was happened at our device last time. Every manageable network device has syslog feature. But the problem is device memory is limited, so we just know log for two days ago, whereas we need to know what was happened at one month ago. Syslog serverĀ is very important since it is needed for Network Monitoring Tools.
I give you alternative software to collect syslog data from your device. linux syslog, Linux syslog, and router syslog is available in here. Kiwi Syslog 8.2.18 is a free and easy to configure software. OK, lets start our configuration.
a. Install Kiwi Syslog Daemon
I use Kiwi Syslogd 8.2.18 for this setup. Please install Kiwi Syslog daemon untill you find final appearance .It’s like when you install another software.
b. Install Syslog service and Start syslog service.
c. Configure Router/Switch
Switch#conf t
Switch(config)#logging (Server IP Address)
Switch(config)#logging trap informational
Switch(config)#exit
For trap mode, you can choose trap mode. Here are 8 modes trap
<0-7> Logging severity level
| alerts | Immediate action needed (severity=1) |
| critical | Critical conditions (severity=2) |
| debugging | Debugging messages (severity=7) |
| emergencies | System is unusable (severity=0) |
| errors | Error conditions (severity=3) |
| informational | Informational messages (severity=6) |
| notifications | Normal but significant conditions (severity=5) |
| warnings | Warning conditions (severity=4) |
You can try if your syslog working or not by enter command clear counter as an example.
Switch#clear counter
Switch#
Now, you can see at your syslog monitor.
