So I plan on updating this with ALOT of Cisco stuff....Eventually. If this helps ANYONE out there I will be a happy man.
For now this is a quick update.
I am configuring Greylog2, Here is the Cisco Config Commands to set it up to send to Greylog2 using syslog. Obviously I dont need to tell you to change the Server IP of your Greylog Server and the logging level.
https://www.graylog2.org/resources/documentation/sending/syslog
conf t
service timestamps log datetime msec localtime
no logging message-counter syslog
logging origin-id hostname
logging facility syslog
logging <<<SERVER IP>>>
no service sequence-numbers
logging trap (emergencies/critical/errors/warnings/notifications/informational/debugging)
0
System unstable
LOG_EMERG
alerts
1
Immediate action needed
LOG_ALERT
2
Critical conditions
LOG_CRIT
3
Error conditions
LOG_ERR
4
Warning conditions
LOG_WARNING
5
Normal but significant condition
LOG_NOTICE
6
Informational messages only
LOG_INFO
7
Debugging messages
LOG_DEBUG
For now this is a quick update.
I am configuring Greylog2, Here is the Cisco Config Commands to set it up to send to Greylog2 using syslog. Obviously I dont need to tell you to change the Server IP of your Greylog Server and the logging level.
https://www.graylog2.org/resources/documentation/sending/syslog
conf t
service timestamps log datetime msec localtime
no logging message-counter syslog
logging origin-id hostname
logging facility syslog
logging <<<SERVER IP>>>
no service sequence-numbers
logging trap (emergencies/critical/errors/warnings/notifications/informational/debugging)
0
System unstable
LOG_EMERG
alerts
1
Immediate action needed
LOG_ALERT
2
Critical conditions
LOG_CRIT
3
Error conditions
LOG_ERR
4
Warning conditions
LOG_WARNING
5
Normal but significant condition
LOG_NOTICE
6
Informational messages only
LOG_INFO
7
Debugging messages
LOG_DEBUG
