Configure the System Log

About this task

Configure the system log to track all user activity on the device. The system log can send messages of up to ten syslog hosts.

Procedure

  1. In the navigation pane, expand Configuration > Edit > Diagnostics.
  2. Select System Log.
  3. In the System Log tab, select Enable.
  4. Configure the maximum number of syslog hosts.
  5. Configure the minimum version of TLS protocol.
  6. Configure the IP header type for the syslog packet.
    Note

    Note

    This step only applies to VSP 8600 Series.

  7. Select Apply.

System Log Field Descriptions

Use the data in the following table to use the System Log tab.

Name

Description

Enable

Enables or disables the syslog feature. If you select this variable, this feature sends a message to a server on a network that is configured to receive and store diagnostic messages from this device. You can configure the type of messages sent. The default is enabled.

MaxHosts

Specifies the maximum number of remote hosts considered active and can receive messages from the syslog service. The range is 0–10 and the default is 5.

OperState

Specifies the operational state of the syslog service. The default is active.

TlsMinimumVersion

Specifies the minimum version of TLS protocol supported by the syslog client.

  • tlsv11 - configures TLS version 1.1

  • tlsv12 - configures TLS version 1.2

The default is tlsv11.

EncryptionType

Specifies the ciphers for preset version of TLS for the syslog.

Header
Note: Exception: only supported on VSP 8600 Series.

Specifies the IP header in syslog packets to circuitlessIP or default.

  • If the value is default, the IP address of the VLAN is used for syslog packets that are transmitted in-band using input/output (I/O) ports.

  • If the value is circuitlessIP, the circuitless IP address is used in the IP header for all syslog messages (in-band or out-of-band). If you configure multiple circuitless IPs, the first circuitless IP configured is used.

The default value is default.