beautypg.com

Event log and syslog server overview – Allied Telesis AT-S62 User Manual

Page 216

background image

Chapter 12: Event Log and Syslog Servers

216

Section II: Advanced Operations

Event Log and Syslog Server Overview

A managed switch is a complex piece of computer equipment that
includes both hardware and software components. Multiple software
features operate simultaneously, interoperating with each other and
processing large amounts of network traffic. It is often difficult to determine
exactly what is happening when a switch appears not to be operating
normally, or what happened when a problem occurs.

A network manager’s major task is to monitor the network functions and to
deal with problems as they arise. One method for monitoring a switch’s
activity is by viewing its event messages. These messages can help you
identify and solve network problems by providing vital information about
system and network activity on an AT-8500 Series switch. The information
includes the time and date when an event occurred, the event’s severity,
the AT-S62 module that generated the event, and an event description.

There are two ways to view a switch’s event messages. The first is by
viewing the event log in the AT-8500 Series switch. The event log resides
in temporary memory and has a maximum storage capacity of 4,000
events. The log is viewable from a local or remote management session of
the switch. The log is not a permanent form of storage. All the events are
purged whenever the switch is reset or power cycled. For instructions on
how to view the log, refer to “Displaying the Event Log” on page 218.

The second method for viewing events is to have the switch send the
event messages to a syslog server on your network using the syslog
protocol. The advantage to this approach is that a syslog server can
function as the central repository for event messages from many different
network devices.

In order for a switch to send its events to a syslog server you have to
create a syslog server definition. The definition includes the IP address of
the syslog server where the messages are to be sent, and other
information, such as the types of messages the switch is to send. You can
create up to nineteen server definitions on a switch. For instructions on
how to create a syslog server definition, refer to “Managing Syslog Server
Definitions” on page 225.

See also other documents in the category Allied Telesis Computer hardware: