Setting up syslog notifications using the CLI

You can set up syslog event notifications by using the command-line interface (CLI).

The syslog protocol is a standard protocol for forwarding log messages from a sender to a receiver on an IP network. The system can send syslog messages that notify personnel about an event. The system can transmit syslog messages in either expanded or concise format. Servers configured with facility values of 0 - 3 receive syslog messages in concise format. Servers configured with facility values of 4 - 7 receive syslog messages in fully-expanded format. The default value is 0. The facility number used in syslog messages also identifies the origin of the message to the receiving server. You can use a syslog manager to view the syslog messages that the system sends. The system uses the User Datagram Protocol (UDP) to transmit the syslog message. You can specify up to a maximum of six syslog servers.You can use the management GUI or the command-line interface to configure and modify your syslog settings.

The syslog event notification settings apply to the entire system. You can specify the types of events that cause the system to send a notification. The possible types of notifications are error, warning, or information.

To specify a syslog destination, you must provide a valid IP address.
Note: Servers that are configured with facility values of 0 - 3 receive syslog messages in concise format. Servers that are configured with facility values of 4 - 7 receive syslog messages in fully expanded format.

To configure and work with notification settings, use the following commands:

  1. Issue the mksyslogserver CLI command to specify the action that you want to take when a syslog error or event is logged to the error log.
    For example, you can issue the following CLI command to set up a syslog notification: 
    mksyslogserver syslog_server_name -ip 9.11.255.123

    where syslog_server_name is the name given to the Syslog server definition and 9.11.255.123 is the external Internet Protocol (IP) address of the syslog server.

  2. To modify a syslog notification, issue the chsyslogserver command.
    For example: 
    chsyslogserver syslog_server_name -ip 9.11.255.123
    where
syslog_server_name is the name given to the Syslog server definition and
9.11.255.123 is the external IP address of the syslog server.
  3. To delete a syslog notification, issue the rmsyslogserver command.
    For example: 
    rmsyslogserver syslog_server_name -force
  4. To display either a concise list or a detailed view of syslog servers that are configured on the system, issue the lssyslogserver command.
    For example, to display a concise view, enter the following command: 
    lssyslogserver -delim :
    To display a detailed view of a syslog server, enter the following command: 
    lssyslogserver syslog_server_name
Parent topic: Managing the system
Related reference
mksyslogserver
chsyslogserver
rmsyslogserver
lssyslogserver