unable to log message from cisco router to syslog server

Unanswered Question
Feb 25th, 2007

Hi,

I am unable to log syslog message from remote router to my syslog server. I wanted to know wheather any firewall ports need to be opened . some of the remote routers traffic passing through firewall and some of them not . I am able to get syslog message from my gateway router but not from any of the remote routers.I wanted to know wheather any services need to be started. All my routers are hardened except my gateway router from I am getting syslog messages. I am using 3csyslog version 1.0. . Expecting help ASAP

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Danilo Dy Sun, 02/25/2007 - 22:43

You need to open UDP port 514 (syslog) incoming (from router to syslog server).

Source: router_ip_address (ip address of the source-interface)

Destination: syslog_server_ip_address

Port: UDP 514

For router, its best to configure the source interface (recommended loopback interface);

!

logging source-interface router_interface_number

logging server_ip_address

rajesh_colt Sun, 02/25/2007 - 23:47

Can u explain in detail...because i configured this ...but still it is not working ....my remote routers still not able to log messages to my syslog server...but this routers are giving stats to the MRTG on the same server where my syslog server is configured...pls help..

Danilo Dy Mon, 02/26/2007 - 00:03

Please paste the following;

- router config (don't change the IP Address)

- firewall rule

- logs from firewall if available

rajesh_colt Mon, 02/26/2007 - 02:18

Hi all,

the problem is resolved, By mistake I was giving every routers fast ethernet ip in syslog server. when i given particular serial interface ip in syslog server..which is connecting a central router. it started getting message from the routers.

thanks all for ur suggestions...

Actions

This Discussion