Skip to content

Cisco Network Devices

This guide explains how to configure your Cisco routers and switches to forward logs to a designated Syslog endpoint. Cisco network devices support Syslog natively, enabling direct log forwarding.

Prerequisites

  • Administrative access to the Cisco device via console or SSH.
  • The Syslog endpoint and port provided by the service (replace <SYSLOG_ENDPOINT> and <SYSLOG_PORT> with the actual values).

Step 1: Access the Cisco Device

  1. Connect to your Cisco device using a console cable or SSH.
  2. Log in with your administrative credentials.

Step 2: Configure the Syslog Server

  1. Enter global configuration mode by typing:

    configure terminal

  2. Specify the Syslog server and port (if your device allows specifying the port; otherwise, it will default to UDP 514). Replace <SYSLOG_ENDPOINT> with the IP address of your Syslog server:

    logging host <SYSLOG_ENDPOINT> transport udp port <SYSLOG_PORT>

    If the device does not support defining the port in the command, simply use logging host <SYSLOG_ENDPOINT>.

  3. (Optional) Set the logging severity level (0-7, from emergencies to debugging). For example, to set it to informational messages and higher:

    logging trap informational

  4. Enable logging to the Syslog server:

    logging on

  5. Exit global configuration mode:

    end

  6. Save your configuration:

    write memory
    or 
    copy running-config startup-config

Step 3: Verify Log Forwarding

  • Generate some test logs, for example, by performing a configuration change or rebooting the device.
  • Contact your service provider to confirm that the logs are being received at the Syslog endpoint.

Troubleshooting

  • Connectivity Issues: Ensure there's network connectivity between your Cisco device and the Syslog server. Verify that no firewalls are blocking UDP port 514 (or your custom port, if applicable).
  • Syslog Server Configuration: Double-check the Syslog server IP address and port configuration on your Cisco device.
  • Correct Logging Level: Make sure the logging level is set appropriately to capture the desired log messages.

For further assistance or specific configurations, please contact your service provider's support team or refer to Cisco's documentation for your specific device model.