Asset Intelligence Ops Intelligence Observability Robotic Data

Syslog (udp)

Configuration of log shipper 'syslog (udp)'.

This section explains how you can configure 'syslog' like a log shipper.

In order for syslog component to send the log details to the event gateway, users have to configure two elements.

  1. Event Gateway Endpoint

  2. Systems syslog configuration on VMWare vSphere environment

Step 1:

An example Event Gateway Endpoint configuration is captured in the below configuration snippet.

// Gateway Endpoint:
endpoints:
- name: syslog_udp_events
  enabled: true
  type: syslog_udp
  port: 514
  attrs:
    site_code: cfx_dc1
    archive_name: network_syslogs
  stream: syslog-udp-stream-01

Step 2:

An example VMWare vSphere configuration is captured in the below configuration snippet.

From vCenter Configuration,

Select host --> Configuration --> Advanced Settings -->Syslog-->Syslog.global.loghost

Provide target event gateway udo details --> udp://eventgatewayip:port

Example: udp://<event-gateway>:514

Note: User is expected to have sufficient privileges to enable/update vCenter configuration

PreviousRsyslogNextSplunk forwarder (Windows and Linux)

Last updated