-
Software Configuration Guide (4.5)
-
Index - Software Config Guide, Cat 5000,4000,2926G,2926 (4.5)
-
About This Guide
-
Product Overview
-
Command-Line Interfaces
-
Configuring the Supervisor Engine Software
-
Configuring Ethernet & Fast Ethernet Switching
-
Configuring Gigabit Ethernet Switching
-
Configuring Fast EtherChannel and Gigabit EtherChannel
-
Configuring Spanning Tree
-
Configuring Spanning-Tree PortFast, UplinkFast,& BackboneFast
-
Configuring VTP
-
Configuring VLANs
-
Configuring VLAN Trunks on Fast Ethernet and Gigabit Ethernet Ports
-
Configuring Dynamic Port VLAN Membership with VMPS
-
Checking Port Status and Connectivity
-
Administering the Switch
-
Controlling Access to the Switch Using Authentication
-
Using Redundant Supervisor Engines
-
Modifying the Switch Boot Configuration
-
Working With the Flash File System
-
Working With System Software Images
-
Working With Configuration Files
-
Configuring System Message Logging
-
Configuring DNS
-
Configuring CDP
-
Configuring NTP
-
Configuring Broadcast/Multicast Suppression
-
Configuring Protocol Filtering
-
Configuring IP Permit List
-
Configuring Secure Port Filtering
-
Configuring SNMP
-
Configuring RMON
-
Configuring SPAN
-
Using Switch TopN Reports
-
Configuring the Network Analysis Module
-
Configuring Multicast Services
-
Configuring ATM LAN Emulation
-
Configuring ATM PVCs and PVCs with Traffic Shaping
-
Configuring Multiprotocol Over ATM
-
Configuring the ATM Fabric Integration Module
-
Configuring InterVLAN Routing
-
Maintaining and Administering the RSM
-
Configuring the Layer 3 Fabric Integration Module
-
Configuring Multilayer Switching
-
Configuring NetFlow Data Export
-
Configuring FDDI/CDDI Switching
-
Configuring FDDI 802.10 Trunks
-
Configuring Token Ring Switching
-
Configuring Token Ring Filters
-
Table Of Contents
Configuring System Message Logging
Understanding How System Message Logging Works
Default System Message Logging Configuration
Configuring System Message Logging
Configuring the Syslog Daemon on a UNIX Syslog Server
Configuring Telnet Login Sessions
System Message Logging Examples
Configuring System Message Logging
This chapter describes how to configure system message logging on the Catalyst 5000, 4000, 2948G, 2926G, and 2926 series switches.
Note
For complete syntax and usage information for the commands used in this chapter, refer to the Command Reference for your switch.
This chapter consists of these sections:
•
•
•
•
Understanding How System Message Logging Works
The system message logging software can save messages in a log file or direct the messages to other devices. The system message logging facility has these features:
•
•
•
By default, the switch logs normal but significant system messages to its internal buffer and sends these messages to the system console. You can specify which system messages should be saved based on the type of facility (see ) and the severity level (see ). Messages are time-stamped to enhance real-time debugging and management.
You can access logged system messages using the switch CLI or by saving them to a properly-configured syslog server. The switch software saves syslog messages in an internal buffer that can store up to 1024 messages. You can monitor system messages remotely by accessing the switch through Telnet or the console port, or by viewing the logs on a syslog server.
Note
describes the facility types supported by the system message logs.
describes the severity levels supported by the system message logs.
System Log Message Format
System log messages begin with a percent sign (%) and can contain up to 80 characters. Messages are displayed in the following format:
mm/dd/yyy:hh/mm/ss:facility-severity-MNEMONIC:description
describes the elements of syslog messages.
This example shows typical switch system messages:
%SYS-5-MOD_OK:Module 1 is online%SYS-5-MOD_OK:Module 2 is online%SYS-5-MOD_OK:Module 3 is online%DTP-5-TRUNKPORTON:Port 2/1 has become dot1q trunk%PAGP-5-PORTTOSTP:Port 2/1 joined bridge port 2/1Default System Message Logging Configuration
describes the default system message logging configuration.
Configuring System Message Logging
To change the default system message logging facility and severity settings, perform one of these tasks in privileged mode:
•
set logging level facility severity
•
set logging console disable
Configuring the Syslog Daemon on a UNIX Syslog Server
Before you can send system log messages to a UNIX syslog server, you must configure the syslog daemon on the UNIX server. Log in as root, and perform these steps:
Step 1
user.debug /var/log/myfile.log
Note
The switch sends messages according to specified facility types and severity levels. The user keyword specifies the UNIX logging facility used. The messages from the switch are generated by user processes. The debug keyword specifies the severity level of the condition being logged. You can set UNIX systems to receive all messages from the switch.
Step 2
$ touch /var/log/myfile.log$ chmod 666 /var/log/myfile.logStep 3
$ kill -HUP `cat /etc/syslog.pidConfiguring Syslog Servers
Note
To configure the switch to log messages to a syslog server, perform this task in privileged mode:
Step 1
set logging server ip_addr
Step 2
set logging server enable
Step 3
set logging level facility severity default
1 You can configure a maximum of three syslog servers at any time.
To remove a syslog server from the configuration, perform this task in privileged mode:
To disable logging to the syslog server, perform this task in privileged mode:
Disable system message logging to configured syslog servers.
set logging server disable
Configuring Telnet Login Sessions
By default, system messages are sent to Telnet sessions based on the default facility and severity values.
To configure the logging settings for Telnet sessions, perform one of these tasks in privileged mode:
Displaying System Messages
To display the current configuration for system messages, perform this task in privileged mode:
To display the first N system messages in the internal buffer of the Catalyst 5000 series switch, perform this task in privileged mode:
To display the last N system messages in the internal buffer of the Catalyst 5000 series switch, perform this task in privileged mode:
To verify the system message logging configuration, enter the show logging command. If you are verifying the system message logging configuration for the console and the syslog server is disabled, the first two lines of output appear as follows:
Console> (enable) show loggingLogging console: enabledLogging server: disabledIf you are verifying the system message log configuration for a Telnet login session, an additional line showing the current logging session is displayed as follows:
Console> (enable) show loggingLogging console: enabledLogging server: disabledCurrent Logging Session: enabledSystem Message Logging Examples
This section provides examples for entering the system message log commands to perform the following tasks:
•
Console> (enable) set logging server enableSystem logging messages will be sent to the configured syslog servers.•
Console> (enable) set logging server 171.69.192.205171.69.192.205 added to the System logging server table.•
Console> (enable) set logging session enableSystem logging messages will be sent to the current login session.•
Console> (enable) set logging level all 1 defaultSystem logging facility <all> set to severity 1(alerts).•
Console> (enable) show loggingLogging console: enabledLogging server: disabledCurrent Logging Session: enabledFacility Server/Default Severity Current Session Severity------------- ----------------------- ------------------------cdp 1 1mcast 1 1dtp 1 1dvlan 1 1earl 1 1fddi 1 1ip 1 1pruning 1 1snmp 1 1spantree 1 1sys 1 1tac 1 1tcp 1 1telnet 1 1tftp 1 1vtp 1 1vmps 1 1kernel 1 1filesys 1 1drip 1 1pagp 1 1mgmt 1 1mls 1 1protfilt 1 1security 1 10(emergencies) 1(alerts) 2(critical)3(errors) 4(warnings) 5(notifications)6(information) 7(debugging)Console> (enable)•
Console> (enable) set logging level snmp 3System logging facility <snmp> set to severity 3(errors).•
Console> (enable) show loggingLogging console: enabledLogging server: disabledCurrent Logging Session: enabledFacility Server/Default Severity Current Session Severity------------- ----------------------- ------------------------cdp 1 1mcast 1 1dtp 1 1dvlan 1 1earl 1 1fddi 1 1ip 1 1pruning 1 1snmp 1 3spantree 1 1sys 1 1tac 1 1tcp 1 1telnet 1 1tftp 1 1vtp 1 1vmps 1 1kernel 1 1filesys 1 1drip 1 1pagp 1 1mgmt 1 1mls 1 1protfilt 1 1security 1 10(emergencies) 1(alerts) 2(critical)3(errors) 4(warnings) 5(notifications)6(information) 7(debugging)Console> (enable)•
Console> (enable) show logging buffer 407/30/1998,12:59:24:SYS-5:Module 1 is online07/30/1998,12:59:32:SYS-5:Module 9 is online07/30/1998,12:59:35:SYS-5:Module 5 is online07/30/1998,12:59:49:SYS-5:Module 2 is onlineConsole> (enable)•
Console> (enable) show logging buffer -407/30/1998,15:44:19:PAGP-5:Port 1/1 joined bridge port 1/1.07/30/1998,15:46:52:DTP-5:Port 1/1 has become isl trunk07/30/1998,15:46:52:PAGP-5:Port 1/1 left bridge port 1/1.07/30/1998,15:47:03:PAGP-5:Port 1/1 joined bridge port 1/1.Console> (enable)
