Mastering JUNOS Syslog
?
0 likes?222 views
The document discusses syslog logging on JUNOS devices, including logging normal and abnormal events, the different syslog categories or facilities like kernel, user, daemon, and security, the syslog severity levels from emergency to info, and how to configure syslog logging locally to files, remotely to syslog hosts, and to display messages on the console.
Mastering JUNOS Syslog
- 1. Syslog ¡ñ Logging JUNOS devices events ¡ð Normal events ¡ö User login successful ¡ö BGP peer established etc. ¡ð Abnormal events ¡ö User login failure ¡ö Interface down ¡ö Excessive PFE temperature etc.
- 2. Facility ¡ñ Syslog categories ¡ð kernel JUNOS Kernel ¡ð user User process ¡ð daemon System process ¡ð authorization Authorization and authentication ¡ð ftp FTP process ¡ð ntp NTP process ¡ð security Security events ¡ð dfc Dynamic flow capture ¡ð external Local external applications
- 3. Facility ¡ñ Syslog categories ¡ð firewall Packet filtering results by Firewall Filter ¡ð pfe PFE evnets ¡ð conflict-log Invalid configurations ¡ð change-log Configuration changes ¡ð interactive-commands Issued CLI commands
- 4. Severity ¡ñ Syslog severity levels ¡ð emergency(0) ¡ð alert(1) ¡ð critical(2) ¡ð error(3) ¡ð warning(4) ¡ð notice(5) ¡ð info(6) ¡ð any(7) All severity levels ¡ð none(N/A) Disabling logging of a particular facility More severe less severe
- 5. Syslog configurations ¡ñ Log locally ¡ð set system syslog file filename authrization any ¡ñ Log remotely ¡ð set system syslog host 10.0.0.1 user info ¡ñ Display messages on the console ¡ð set system syslog console security alert
- 6. Show syslog contents ¡ñ Show locally saved syslog ¡ð > show log filename ¡ð > file show /var/log/filename