Configures a switch to forward system messages to the specified syslog servers.
Global configuration mode
Use this command to configure a switch to forward all error log entries to the specified servers. You can configure up to four syslog servers; this includes all VRFs. You must execute the command for each server.
The certutil import syslogca command is required for a secure syslog to be fully functional.
After specifying the ip_address and vrf-name, the secure sub-command can be used to specify the secure default port (6514) or specify a secure non-default syslog server port. These sub-commands are only available after specifying the ip_address and vrf-name parameters.
Use the no logging syslog-server command with the optional use-vrf keyword to remove the specified IP address and VRF.
By default, all management services are enabled on the management VRF ("mgmt-vrf") and the default VRF ("default-vrf").
To configure a server IPv4 address to which system messages are sent on a user-specified VRF:
device# configure terminal device(config)# logging syslog-server 192.168.163.233 use-vrf myvrf device(config-syslog-server-192.168.163.233/myvrf)#
device(config)# logging syslog-server 1.1.1.1 use-vrf mgmt-vrf device(config-syslog-server-1.1.1.1/mgmt-vrf)# secure port 6502 device(config-syslog-server-1.1.1.1/mgmt-vrf)#
To configure a CLI source-interface in the logging syslog-server option:
device (config-syslog-server-1.1.1.1/mgmt-vrf)# source-interface Possible completions: ethernet Use Ethernet interface as source interface loopback Use Loopback interface as source interface management Use Managment (Active MM or Chassis ip) as source address ve Use ve interface as source interface device (config-syslog-server-1.1.1.1/mgmt-vrf)# source-interface management Possible completions: <NUMBER: 0-1> 1=Active-MM-IP 0=Chassis-IP device (config-syslog-server-1.1.1.1/mgmt-vrf)#
To remove a configured syslog server:
device# configure terminal device(config)# no logging syslog-server 192.168.163.233