unable to log message from cisco router to syslog server

rajesh_colt · ‎02-25-2007

Hi,

I am unable to log syslog message from remote router to my syslog server. I wanted to know wheather any firewall ports need to be opened . some of the remote routers traffic passing through firewall and some of them not . I am able to get syslog message from my gateway router but not from any of the remote routers.I wanted to know wheather any services need to be started. All my routers are hardened except my gateway router from I am getting syslog messages. I am using 3csyslog version 1.0. . Expecting help ASAP

Danilo Dy · ‎02-25-2007

You need to open UDP port 514 (syslog) incoming (from router to syslog server).

Source: router_ip_address (ip address of the source-interface)

Destination: syslog_server_ip_address

Port: UDP 514

For router, its best to configure the source interface (recommended loopback interface);

!

logging source-interface router_interface_number

logging server_ip_address

rajesh_colt · ‎02-25-2007

Can u explain in detail...because i configured this ...but still it is not working ....my remote routers still not able to log messages to my syslog server...but this routers are giving stats to the MRTG on the same server where my syslog server is configured...pls help..

Amit Singh · ‎02-25-2007

Rajesh,

Please paste the router configuration.

-amit singh

Danilo Dy · ‎02-26-2007

Please paste the following;

- router config (don't change the IP Address)

- firewall rule

- logs from firewall if available

rajesh_colt · ‎02-26-2007

Hi all,

the problem is resolved, By mistake I was giving every routers fast ethernet ip in syslog server. when i given particular serial interface ip in syslog server..which is connecting a central router. it started getting message from the routers.

thanks all for ur suggestions...