To configure a Cisco CatOS-based switch for sending syslog messages to an external syslog server, use the privileged EXEC mode commands shown as below. By default used port 514 UDP, also you can configure specific port:
Switch>enable Switch#configure terminal Switch(config)# logging host [logging 172.16.10.51] or [logging 172.16.10.51 transport udp port 5140] Switch(config)# logging trap level [default level is informational] Switch(config)# end
We finish configuration on Cisco switch. Now we can move to graylog server to create input to receive logs. Message inputs are the Graylog parts responsible for accepting log messages.
There are many inputs that support graylog and We will use SYSLOG UDP.
So login to graylog and go to System -> Inputs, choose syslog udp from the list and click on Launch new input
Then fill all required field as below and click Save:
Click “Show received messages” to look at logs:
That’s all. I hope, this article was helpful for you and You can look at other articles about graylog from here Graylog log management
