Table Of Contents
Configuring System Message Logging
About System Message Logging
System Log Message Format
Configuring System Message Logging
.Enabling Message Logging
Configuring Console Severity Level
Configuring Module Logging
Configuring Facility Severity Level
Configuring Log Files
Configuring Syslog Servers
Displaying System Message Logging Information
Default Settings
Configuring System Message Logging
This chapter describes how to configure system message logging on the Cisco MDS 9000 Family switches. It includes the following sections:
•About System Message Logging
•System Log Message Format
•Configuring System Message Logging
•Displaying System Message Logging Information
•Default Settings
About System Message Logging
The system message logging software saves messages in a log file or directs the messages to other devices. This feature provides you with the following capabilities:
•Provides logging information for monitoring and troubleshooting
•Allows you to select the types of captured logging information.
•Allows you to select the destination of the captured logging information.
By default, the switch logs normal but significant system messages to a log file and sends these messages to the system console. You can specify which system messages should be saved based on the type of facility (see Table 20-1) and the severity level (see Table 20-2). Messages are time-stamped to enhance real-time debugging and management.
You can access logged system messages using the CLI or by saving them to a properly configured syslog server. The switch software saves syslog messages in a file that can be configured to save up to 4 MB. You can monitor system messages remotely by accessing the switch through Telnet, SSH, or the console port, or by viewing the logs on a syslog server.
Note When the switch first initializes, the network is not connected until initialization completes. Therefore, messages are not redirected to a syslog server for a few seconds.
Table 20-1 describes the facilities supported by the system message logs.
Table 20-1 Logging Facilities
Facility Keyword
|
Description
|
Standard or Cisco MDS Specific
|
acl
|
ACL manager
|
Cisco MDS 9000 Family specific
|
all
|
All facilities
|
Cisco MDS 9000 Family specific
|
auth
|
Authorization system
|
Cisco MDS 9000 Family specific
|
authpriv
|
Authorization (private) system
|
Standard
|
bootvar
|
Bootvar
|
Cisco MDS 9000 Family specific
|
callhome
|
Call Home
|
Cisco MDS 9000 Family specific
|
cron
|
Cron or at facility
|
Standard
|
daemon
|
System daemons
|
Standard
|
fcc
|
FCC
|
Cisco MDS 9000 Family specific
|
fcdomain
|
fcdomain
|
Cisco MDS 9000 Family specific
|
fcns
|
Name server
|
Cisco MDS 9000 Family specific
|
fcs
|
FCS
|
Cisco MDS 9000 Family specific
|
flogi
|
FLOGI
|
Cisco MDS 9000 Family specific
|
fspf
|
FSPF
|
Cisco MDS 9000 Family specific
|
ftp
|
File Transfer Protocol
|
Standard
|
ipconf
|
IP configuration
|
Cisco MDS 9000 Family specific
|
ipfc
|
IPFC
|
Cisco MDS 9000 Family specific
|
kernel
|
Kernel
|
Standard
|
local0 to local7
|
Locally defined messages
|
Standard
|
lpr
|
Line printer system
|
Standard
|
mail
|
Mail system
|
Standard
|
mcast
|
Multicast
|
Cisco MDS 9000 Family specific
|
module
|
Switching module
|
Cisco MDS 9000 Family specific
|
news
|
USENET news
|
Standard
|
ntp
|
NTP
|
Cisco MDS 9000 Family specific
|
platform
|
Platform manager
|
Cisco MDS 9000 Family specific
|
port
|
Port
|
Cisco MDS 9000 Family specific
|
port-channel
|
PortChannel
|
Cisco MDS 9000 Family specific
|
qos
|
QoS
|
Cisco MDS 9000 Family specific
|
rdl
|
RDL
|
Cisco MDS 9000 Family specific
|
rib
|
RIB
|
Cisco MDS 9000 Family specific
|
rscn
|
RSCN
|
Cisco MDS 9000 Family specific
|
scsi-target
|
Scsi target daemon
|
Cisco MDS 9000 Family specific
|
security
|
Security
|
Cisco MDS 9000 Family specific
|
syslog
|
Internal syslog messages
|
Standard
|
sysmgr
|
System manager
|
Cisco MDS 9000 Family specific
|
tlport
|
TL port
|
Cisco MDS 9000 Family specific
|
user
|
User process
|
Standard
|
uucp
|
Unix-to-Unix copy system
|
Standard
|
vni
|
Virtual network interface
|
Cisco MDS 9000 Family specific
|
vrrp
|
VRRP
|
Cisco MDS 9000 Family specific
|
vsan
|
VSAN syslog
|
Cisco MDS 9000 Family specific
|
vshd
|
vshd
|
Cisco MDS 9000 Family specific
|
wwnm
|
WWN manager
|
Cisco MDS 9000 Family specific
|
xbar
|
Xbar syslog
|
Cisco MDS 9000 Family specific
|
zone
|
Zone server
|
Cisco MDS 9000 Family specific
|
Table 20-2 describes the severity levels supported by the system message logs.
Table 20-2 Error Message Severity Levels
Level Keyword
|
Level
|
Description
|
Syslog Definition
|
emergencies
|
0
|
System unusable
|
LOG_EMERG
|
alerts
|
1
|
Immediate action needed
|
LOG_ALERT
|
critical
|
2
|
Critical conditions
|
LOG_CRIT
|
errors
|
3
|
Error conditions
|
LOG_ERR
|
warnings
|
4
|
Warning conditions
|
LOG_WARNING
|
notifications
|
5
|
Normal but significant condition
|
LOG_NOTICE
|
informational
|
6
|
Informational messages only
|
LOG_INFO
|
debugging
|
7
|
Debugging messages
|
LOG_DEBUG
|
System Log Message Format
System log messages begin with a percent sign (%) and are displayed in the following format (see Table 20-3):
month dd hh:mm:ss switchname-facility-severity-MNEMONIC description
For example:
Nov 8 14:07:58 excal-113 %LOG_MODULE-5-MOD_OK: Module 1 is online
Nov 8 14:07:58 excal-113 %LOG_PORT-3-IF_UNSUPPORTED_TRANSCEIVER: Transceiver for interface
fc1/13 is not supported
Nov 8 14:07:59 excal-113 %LOG_PLATFORM-5-PS_OK: Power supply 1 ok
Nov 8 14:07:53 excal-113 %LOG_DAEMON-5-SYSTEM_MSG: readjusting service shell
Nov 8 15:59:38 excal-113 %LOG_KERN-6-SYSTEM_MSG: utaker: setting queue 1 control pid 1392
(owner 1392)
Nov 8 15:21:44 excal-113 %LOG_VSHD-5-VSHD_SYSLOG_CONFIG_I: Configuring console from pts/0
(171.71.58.72)
Table 20-3 System Log Message Format Description
Element
|
Description
|
month dd
|
The date and month of the error or event.
|
hh:mm:ss
|
The time of the error or event.
|
switchname
|
The name of the switch
|
facility
|
The facility of the error or event (daemon, kernel, VSHD, or other facility).
|
severity
|
Single-digit code from 0 to 7 that indicates the severity of the message.
|
MNEMONIC
|
Text string that uniquely describes the error message.
|
description
|
Text string containing detailed information about the event being reported
|
Configuring System Message Logging
System logging messages are sent to the console based on the default (or configured) logging facility and severity values.
.Enabling Message Logging
You can disable logging to the console or enable logging to a given Telnet or SSH session.
•When you disable or enable logging to a console session, that state is applied to all future console sessions. If you exit and log in again to a new session, the state is preserved.
•When you enable or disable logging to a Telnet or SSH session. that state is applied only to that session. If you exit and log in again to a new session, the state is not preserved.
To enable or disable the logging state for a Telnet, or SSH session, follow these steps:
|
Command
|
Purpose
|
Step 1
|
switch# terminal monitor
|
Enables logging for a Telnet, or SSH session.
Note A console session is enabled by default.
|
Step 2
|
switch(config)# terminal no monitor
switch(config)#
|
Disables logging for a Telnet, or SSH session.
Note A Telnet or SSH session is disabled by default.
|
Configuring Console Severity Level
When logging is enabled for a console session (default), you can configure the severity levels of messages that appear on the console. The default severity for console logging is 5 (notification).
To configure the severity level for a logging facility, follow these steps:
|
Command
|
Purpose
|
Step 1
|
switch# config t
|
Enters configuration mode.
|
Step 2
|
switch(config)# logging console 2
|
Configures console logging at level 2 (critical). Logging messages with a severity level of 2 or above will be displayed on the console.
|
switch(config)# logging console
|
Reverts console logging to the factory set default severity level of 5 (notification). Logging messages with a severity level of 5 or above will be displayed on the console.
|
Configuring Module Logging
By default, logging is enabled at Level 7 for all modules. You can enable or disable logging for each module at a specified level.
To configure the severity level for a logging facility, follow these steps:
|
Command
|
Purpose
|
Step 1
|
switch# config t
|
Enters configuration mode.
|
Step 2
|
switch(config)# logging module 1
|
Configures module logging at Level 1 (alerts).
|
switch(config)# logging module
|
Configures module logging for all modules in the switch.
|
switch(config)# no logging console
|
Reverts console logging to the factory set default severity level of 5 (notification). Logging messages with a severity level of 5 or above will be displayed on the console.
|
Configuring Facility Severity Level
To configure the severity level for a logging facility, follow these steps:
|
Command
|
Purpose
|
Step 1
|
switch# config t
|
Enters configuration mode.
|
Step 2
|
switch(config)# logging level kernel 4
|
Configures Telnet or SSH logging for the kernel facility at level 4 (warning). As a result, logging messages with a severity level of 4 or above will be displayed.
|
Configuring Log Files
Logging messages may be saved to a log file. You can configure the name of this file and restrict its size as required. The file name can have up to 200 characters and the file size ranges from 4096 bytes to 4194304 bytes.
To send log messages to file, follow these steps:
|
Command
|
Purpose
|
Step 1
|
switch# config t
|
Enters configuration mode.
|
Step 2
|
switch(config)# logging logfile
ManagerLogFile 3 size 3000000
|
Configures logging information for errors or events above a severity level of 3 (errors) to be logged in a file named ManagerLogFile. By configuring this limit, you are restricting the file size to 3000000 bytes. The maximum upper limit is 4194304 (default).
|
The configured log file is saved in the /var/log/external directory. You can use the show logging and clear debug-logfile commands to view and clear this file. It is not accessible using the dir command.
Configuring Syslog Servers
To send log messages to a UNIX syslog server, you must configure the syslog daemon on a UNIX server. Log in as root, and perform these steps:
Step 1 Add the following line to the file /etc/syslog.conf
local7.debug /var/log/myfile.log
Note Be sure to add five tab characters between local7.debug and /var/log/myfile.log. Refer to entries in the /etc/syslog.conf file for further examples.
The switch sends messages according to the specified facility types and severity levels. The local7 keyword specifies the UNIX logging facility used. The messages from the switch are generated by user processes. The debug keyword specifies the severity level of the condition being logged. You can set UNIX systems to receive all messages from the switch.
Step 2 Create the log file by entering these commands at the UNIX shell prompt:
$ touch /var/log/myfile.log
$ chmod 666 /var/log/myfile.log
Step 3 Make sure the syslog daemon reads the new changes by entering this command:
$ kill -HUP ~cat /etc/syslog.pid~
To configure syslog servers, follow these steps:
|
Command
|
Purpose
|
Step 1
|
switch# config t
|
Enters configuration mode.
|
Step 2
|
switch(config)# logging server
172.22.00.00
|
Configures the switch to forward log messages according to the specified facility types and severity levels to remote multiple servers specified by its hostname or IP address (172.22.00.00).
Note You can configure a maximum of three syslog servers.
|
switch(config)# logging server
172.22.00.00 facility local 1
|
Configures the switch to forward log messages according to the specified facility level (1) for the server IP address (172.22.00.00). The default facility level is 7.
|
switch(config)# no logging server
172.11.00.00
|
Removes the specified server (172.11.00.00) and reverts to factory default.
Note You can configure a maximum of three syslog servers.
|
Displaying System Message Logging Information
Use the show logging command to display the current system message logging configuration. See Examples 20-1 to 20-8.
Example 20-1 Displays Current System Message Logging
Logging console: enabled (Severity: notifications)
Logging monitor: enabled (Severity: information)
Logging linecard: enabled (Severity: debugging)
server severity: debugging
server severity: debugging
Name - external/sampleLogFile: Severity - notifications Size - 3000000
Facility Default Severity Current Session Severity
-------- ---------------- ------------------------
0(emergencies) 1(alerts) 2(critical)
3(errors) 4(warnings) 5(notifications)
6(information) 7(debugging)
Nov 8 16:48:04 excal-113 %LOG_VSHD-5-VSHD_SYSLOG_CONFIG_I: Configuring console
from pts/1 (171.71.58.56)
Nov 8 17:44:09 excal-113 %LOG_VSHD-5-VSHD_SYSLOG_CONFIG_I: Configuring console
from pts/0 (171.71.58.72)
Example 20-2 Displays Console Logging Status
switch# show logging console
Logging console: enabled (Severity: notifications)
Example 20-3 Displays Logging Facility
switch# show logging level
Facility Default Severity Current Session Severity
-------- ---------------- ------------------------
0(emergencies) 1(alerts) 2(critical)
3(errors) 4(warnings) 5(notifications)
6(information) 7(debugging)
Example 20-4 Displays Logging Information
switch# show logging info
Logging console: enabled (Severity: notifications)
Logging monitor: enabled (Severity: information)
Logging linecard: enabled (Severity: debugging)
server severity: debugging
server severity: debugging
Name - external/sampleLogFile: Severity - notifications Size - 3000000
Facility Default Severity Current Session Severity
-------- ---------------- ------------------------
0(emergencies) 1(alerts) 2(critical)
3(errors) 4(warnings) 5(notifications)
6(information) 7(debugging)
Example 20-5 Displays Last Few Lines of a Log File
switch# show logging last 2
Nov 8 16:48:04 excal-113 %LOG_VSHD-5-VSHD_SYSLOG_CONFIG_I: Configuring console from pts/1
(171.71.58.56)
Nov 8 17:44:09 excal-113 %LOG_VSHD-5-VSHD_SYSLOG_CONFIG_I: Configuring console from pts/0
(171.71.58.72)
Note Use the show logging filename command to display the entire log file.
Example 20-6 Displays Switching Module Logging Status
switch# show logging module
Logging linecard: enabled (Severity: debugging)
Example 20-7 Displays Monitor Logging Status
switch# show logging monitor
Logging monitor: enabled (Severity: information)
Note Use the show logging nvram command to view the last 100 log messages in NVRAM
Example 20-8 Displays Server Information
switch# show logging server
server severity: debugging
server severity: debugging
Default Settings
Table 20-4 lists the default settings for system message logging.
Table 20-4 Default System Message Log Setting
Parameters
|
Default
|
System message logging to the console
|
Enabled.
|
System message logging to Telnet sessions
|
Disabled.
|
Logging file size
|
4194304.
|
Log file name
|
200 characters.
|
Logging server
|
Disabled.
|
Syslog server IP address
|
Non configured.
|
No. of servers
|
3 servers.
|
Server facility
|
Local 7.
|