This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

EXOS Syslog Severity Overview?

EXOS Syslog Severity Overview?

SchmuFoo
Contributor

‎07-07-2015 09:38 AM

Hello Community,

just stumpled over the avaible/following syslog severity list and wondering, if there is also an severityname <-> fix number mapping existing?

configure log target syslog 1.2.3.4:514 vr VR-Mgmt local0 filter "DefaultFilter" severity ?
<severity> Severity value to use
"critical" "debug-data" "debug-summary" "debug-verbose" "error" "info" "notice" "warning"


I'm testing the syslog sensor feature from PRTG [1] and the per device configuration sensor is working with the following filter option:

severity[number]

any number (or range) from 0 (emergency) to 7 (debug) specifying the type of message

  • severity[4]
  • severity[1-3]
  • severity[1] AND severity[2]

Durign my tests I found out:

  • Failed logins are listed in PRTG as "Severity 4" events and on the EXOS side, the failed login entry is listed as an "warning" event.
  • Successfull logins are listed in PRTG as "Severity 6" and on the EXOS side as "info".
But what about all other possible syslog messages and severitys, to which "number level" do they belong to?

Cisco f.e. is using the following mapping:

http://www.cisco.com/c/en/us/td/docs/security/asa/syslog-guide/syslogs/logsevp.html

[1] https://prtg.paessler.com/help/syslog_receiver_sensor.htm

Cheers,
Jan

0 Kudos
8 REPLIES 8

BrandonC
Extreme Employee
In response to BrandonC

‎07-07-2015 02:21 PM

I also created a GTAC Knowledge article with further information regarding this:

https://gtacknowledge.extremenetworks.com/articles/Q_A/How-do-EXOS-log-severities-map-to-the-numeric...
0 Kudos

Andrew_Maldonad
Extreme Employee

‎07-07-2015 12:48 PM

Jan,

Here is a link to a section of the EXOS Command Reference Guide that goes into more detail regarding the severity levels.

http://documentation.extremenetworks.com/exos_commands/EXOS_All/EXOS_Commands_All/r_configure-log-ta...

-Andrew
0 Kudos

Andrew_Maldonad
Extreme Employee

‎07-07-2015 12:08 PM

Jan,

The EXOS EMS Messages Catalog contains a significant amount of information regarding EXOS log messages including severity level. Here is a link to the EXOS EMS Messages Catalog.

http://documentation.extremenetworks.com/ems_catalog/downloads/EMS_Messages_Catalog.pdf

-Andrew

0 Kudos
li.common.scroll-to.top
GTM-P2G8KFN