Scribd
Upload
143 views

10RX HowTo Configure Syslog

This document provides instructions for configuring syslog on a 10RX device to send event logs to a remote syslog server. It covers preparing for the configuration by gathering needed tools, software, and network information. It then describes how to connect to the 10RX device via console port and how to configure syslog using either the graphical web interface or command line interface. The configuration involves specifying the IP address and port of the syslog server as well as the event severity levels to be sent.

Uploaded by

mstin22
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
143 views

10RX HowTo Configure Syslog

This document provides instructions for configuring syslog on a 10RX device to send event logs to a remote syslog server. It covers preparing for the configuration by gathering needed tools, software, and network information. It then describes how to connect to the 10RX device via console port and how to configure syslog using either the graphical web interface or command line interface. The configuration involves specifying the IP address and port of the syslog server as well as the event severity levels to be sent.

Uploaded by

mstin22
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 18

10RX Syslog Setup How To

Syslog Setup using CLI or Web GUI

Topic Covered

Syslog Description ...................................................................................................................................... 2


Initial Preparation ........................................................................................................................................ 2
Connecting to the 10RX .............................................................................................................................. 4
Configuring Syslog using the GUI ............................................................................................................. 6
Configuring Syslog using the CLI ........................................................................................................... 10

Featured Brands

1
Belden, Belden Sending All The Right Signals, Hirschmann, GarrettCom, Tofino Security, Lumberg Automation and the
Belden logo are trademarks or registered trademarks of Belden Inc. or its affiliated companies in the United States and
other jurisdictions. Belden and other parties may also have trademark rights in other terms used herein. Phone: 1.800.BELDEN1 www.belden.com
General Information

1 Syslog Configuration:
Syslog is a 10RX feature that allows the configuration of a remote server (Syslog Server) to receive
10RX events that are normally only recorded in a local file. This allows the system administrator to
conserve space in the 10RX file system by reducing the requirement to keep events locally for a
long period of time.

2 Initial Preparation
Gather the information, tools and equipment needed to complete this task. The example values
given in this document are not meant to be thought of as recommended as each installation is
unique and has its own requirements.

2.1 Tools and equipment:


2.1.1 Cables

Console cable RJ45 to DB9 for systems with serial port (Model CONSOLE-CBLQD) or

Console cable RJ45 to USB for systems with only USB ports (Model CONSOLE-CBLQU)

RJ45 Ethernet cable

1 RTS Request to Send

2 Not Used No Connection

3 TXD Transmit Data (out)

4 GND Signal ground

5 Not Used No Connection

6 RXD Receive Data (in)

2
Belden, Belden Sending All The Right Signals, Hirschmann, GarrettCom, Tofino Security, Lumberg Automation and the
Belden logo are trademarks or registered trademarks of Belden Inc. or its affiliated companies in the United States and
other jurisdictions. Belden and other parties may also have trademark rights in other terms used herein. Phone: 1.800.BELDEN1 www.belden.com
7 Not Used No Connection

8 CTS Clear to Send

RJ45 Console port pin assignments

2.1.2 Software

Terminal Server Software for a Windows PC supporting serial and SSH connections to access the
10RX CLI;

Recommended, not supplied by Belden.

Examples: TeraTerm (http://en.osdn.jp/projects/ttssh2/releases/)

Putty (http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html)

Internet Browsers used to access the 10RX Graphical User Interface, hereafter called the GUI.

Examples: Firefox (https://www.mozilla.org/)

Chrome (https://www.google.com/chrome/)

These are third party software and as such are not supported by Belden.

2.1.3 Laptop or Desktop Personal Computer required

These devices are not supplied nor supported by Belden

2.2 Information to get before starting:


This information may be supplied by your IT department or the network administrator for the
network where the 10RX will be installed.

2.2.1 IP address assigned to the Syslog Server

Example Value Used: 192.168.1.1

2.2.2 Protocol used by the Syslog Server

Example Value Used: UDP (UDP and TCP are available)

3
Belden, Belden Sending All The Right Signals, Hirschmann, GarrettCom, Tofino Security, Lumberg Automation and the
Belden logo are trademarks or registered trademarks of Belden Inc. or its affiliated companies in the United States and
other jurisdictions. Belden and other parties may also have trademark rights in other terms used herein. Phone: 1.800.BELDEN1 www.belden.com
2.2.3 UDP or TCP port used by the Syslog Server

Example Value Used: 514 (default for UDP; 604 is default for TCP)

2.2.4 Categories expected by the Syslog Server

Example:

Priority Facility Severity Addr-Type IpAddress Port Type

--------- -------- -------------- --------- --------------- ----- ----

128(128-0) local0 0-Emergencies ipv4 172.29.1.150 514 udp

129(128-1) local0 1-Alerts ipv4 172.29.1.150 514 udp

130(128-2) local0 2-Critical ipv4 172.29.1.150 514 udp

131(128-3) local0 3-Errors ipv4 172.29.1.150 514 udp

132(128-4) local0 4-Warnings ipv4 172.29.1.150 514 udp

133(128-5) local0 5-Notification ipv4 172.29.1.150 514 udp

134(128-6) local0 6-Informational ipv4 172.29.1.150 514 udp

135(128-7) local0 7-Debugging ipv4 172.29.1.150 514 udp

Increasing value of priority includes all lower numbered values

Priority of 130 will send all critical, alerts, and emergency events

Example Value Used: 135 (all severities of events will be sent to the Syslog Server)

3 Connecting to the 10RX

3.1 Console Port Connections


The console port of the 10RX is an RJ45 connector that can be located on either the front or rear
of the system. It is always located with the LED indicators (power, activity or connectivity)

Use the appropriate cable to connect from the laptop to the console port. Start the Terminal
program installed on your PC (TeraTerm in this document), select the appropriate serial port (this
will vary from system to system depending on the cable and the adapter used) and configure the
serial port properties as follows:

4
Belden, Belden Sending All The Right Signals, Hirschmann, GarrettCom, Tofino Security, Lumberg Automation and the
Belden logo are trademarks or registered trademarks of Belden Inc. or its affiliated companies in the United States and
other jurisdictions. Belden and other parties may also have trademark rights in other terms used herein. Phone: 1.800.BELDEN1 www.belden.com
• 38400 Baud rate
• 8 Data bits
• 1 Stop bit
• No Parity
• No Flow Control

After completing this and hitting the enter key you should see a login: prompt. The default
username and password is manager.

3.2 SSH Connections


Before connecting to the Ethernet port on the 10RX the IP address of the Laptop/PC must be set
to be in the same subnet as the default IP of the 10RX, in this example it is set to 172.29.1.5
mask 255.255.255.0.

Only Ethernet port 1/1 is enabled when the 10RX is first powered up. This port is always the top
left port set when facing the system. The 10RX Ethernet ports 1 and 2 are RJ45/SFP socket port
pairs only one or the other can be used. When first setting up the system it is recommended that
the fiber port not be used till all initial setup is done. The default address is 192.168.1.2.

Some Terminal Server software will take what seems a long time to make the first connection, do
not despair a lot of back and forth occurs just this once and usually once all this has completed
you will be asked to accept a key (not accepting this key will not allow you to login).

After this you will see a login: prompt. The default username and password is manager.

NOTE: Remember that once the IP address of the 10RX has been changed this initial SSH
connection will no longer be valid and a new session with the new address must be started to
continue.

3.3 Web/GUI Connections


Before connecting to the Ethernet port on the 10RX the IP address of the Laptop/PC must be set
to be in the same subnet as the default IP of the 10RX, in this example it is set to 172.29.1.5
mask 255.255.255.0.

Only Ethernet port 1/1 is enabled when the 10RX is first powered up. This port is always the top
left port set when facing the system. The 10RX Ethernet ports 1 and 2 are RJ45/SFP socket port
pairs only one or the other can be used. When first setting up the system it is recommended that
the fiber port not be used till all initial setup is done. The example address is 172.29.1.1 and a
secure connection is required. Thus the URL/Address to access will be https://172.29.1.100.

NOTE: All newer web browsers and all older browsers that have all of the security updates
installed are configured by default to reject self-signed certificates (these certificates are used to
setup the SSL secure connection). However you are offered as the user the opportunity to bypass
this block and continue to the web page. You will be required to do this for the 10RX.

After this you will see a login: screen. The default username and password is manager.

5
Belden, Belden Sending All The Right Signals, Hirschmann, GarrettCom, Tofino Security, Lumberg Automation and the
Belden logo are trademarks or registered trademarks of Belden Inc. or its affiliated companies in the United States and
other jurisdictions. Belden and other parties may also have trademark rights in other terms used herein. Phone: 1.800.BELDEN1 www.belden.com
4 Configuring Syslog Using the GUI

4.1 Logging in to the 10RX using the browser


The Chrome browser was used for screen captures for this document, screens will vary from
browser to browser.

Now you can login using the username: manager and password: manager

6
Belden, Belden Sending All The Right Signals, Hirschmann, GarrettCom, Tofino Security, Lumberg Automation and the
Belden logo are trademarks or registered trademarks of Belden Inc. or its affiliated companies in the United States and
other jurisdictions. Belden and other parties may also have trademark rights in other terms used herein. Phone: 1.800.BELDEN1 www.belden.com
This is the default start screen for the 10RX

4.2 Configuring Syslog


First we must navigate to the Syslog configuration screens this is located in the
Administration/Logging subsection.

7
Belden, Belden Sending All The Right Signals, Hirschmann, GarrettCom, Tofino Security, Lumberg Automation and the
Belden logo are trademarks or registered trademarks of Belden Inc. or its affiliated companies in the United States and
other jurisdictions. Belden and other parties may also have trademark rights in other terms used herein. Phone: 1.800.BELDEN1 www.belden.com
Next we enter the data collected earlier into the Syslog Collector setting screen:

• The first step is to choose Server as type of collector (see above)

Next we enter the data collected earlier into the Interface setting screen:

• Selecting server sets up the remote logging server (Syslog)


• Priority number is related to the configured facility (local0)
o See table in section 2.2.4 for Priority definition
o Priority 135 includes all previous priorities 128 through 134

8
Belden, Belden Sending All The Right Signals, Hirschmann, GarrettCom, Tofino Security, Lumberg Automation and the
Belden logo are trademarks or registered trademarks of Belden Inc. or its affiliated companies in the United States and
other jurisdictions. Belden and other parties may also have trademark rights in other terms used herein. Phone: 1.800.BELDEN1 www.belden.com
• Server Address is the IP address of the Syslog server
o Example 172.29.1.5
• Configure Port
o Example 514
• Configure Protocol
o Example UDP

NOTE: Make sure that you click on the save button in the lower right hand corner (note
color change of save button) of the GUI at this time as the information is not currently
saved and should you lose power or reload the system all of the changes will be lost.

You have now completed configuring Syslog of the 10RX using the GUI.

9
Belden, Belden Sending All The Right Signals, Hirschmann, GarrettCom, Tofino Security, Lumberg Automation and the
Belden logo are trademarks or registered trademarks of Belden Inc. or its affiliated companies in the United States and
other jurisdictions. Belden and other parties may also have trademark rights in other terms used herein. Phone: 1.800.BELDEN1 www.belden.com
5 Configuring Syslog Using the CLI

5.1 Logging into the 10RX using either SSH or Console port to access the CLI
Once the connection is made via SSH or Console port you should see the following on the
Terminal Server screen:

This system is for the use of authorized users only.

Individuals using this system are subject to having their

activities monitored and recorded by authorized company personnel.

Anyone using this system expressly consents to such monitoring and is

advised that if such monitoring reveals possible evidence

of criminal activity, company personnel may provide the evidence

of such monitoring to enforcement officials.

Login: manager

Password:

After Logging into the system you see the system prompt:

Magnum 10RX#

Magnum 10RX#

Magnum 10RX# show ip inter

vlan1 is up, line protocol is up

Internet address is 172.29.1.100/24

Broadcast address is 172.29.1.255

Magnum 10RX# show ip route

Codes: C - connected, S - static, R - RIP, B - BGP, O - OSPF

10
Belden, Belden Sending All The Right Signals, Hirschmann, GarrettCom, Tofino Security, Lumberg Automation and the
Belden logo are trademarks or registered trademarks of Belden Inc. or its affiliated companies in the United States and
other jurisdictions. Belden and other parties may also have trademark rights in other terms used herein. Phone: 1.800.BELDEN1 www.belden.com
E1 - OSPF external type 1, E2 - OSPF external type 2

IA - OSPF inter area

C 172.29.1.0/24 is directly connected, vlan1

Magnum 10RX#

Magnum 10RX# show runn

login block-for 1 attempts 3

login password-strength 75

vlan 1

interface gigabitethernet 1/1

no shutdown

interface gigabitethernet 2/1

interface gigabitethernet 3/1

interface gigabitethernet 3/2

interface gigabitethernet 5/1

interface gigabitethernet 5/2

interface vlan 1

ip address 172.29.1.100 255.255.255.0

no shutdown

11
Belden, Belden Sending All The Right Signals, Hirschmann, GarrettCom, Tofino Security, Lumberg Automation and the
Belden logo are trademarks or registered trademarks of Belden Inc. or its affiliated companies in the United States and
other jurisdictions. Belden and other parties may also have trademark rights in other terms used herein. Phone: 1.800.BELDEN1 www.belden.com
!

interface serial 6/1

interface serial 6/2

interface serial 7/1

interface serial 7/2

interface serial 7/3

interface serial 7/4

interface serial 8/1

interface serial 8/2

interface t1e1 4/1

interface t1e1 4/2

interface gigabitethernet 1/1

interface gigabitethernet 2/1

interface gigabitethernet 3/1

12
Belden, Belden Sending All The Right Signals, Hirschmann, GarrettCom, Tofino Security, Lumberg Automation and the
Belden logo are trademarks or registered trademarks of Belden Inc. or its affiliated companies in the United States and
other jurisdictions. Belden and other parties may also have trademark rights in other terms used herein. Phone: 1.800.BELDEN1 www.belden.com
!

interface gigabitethernet 3/2

interface gigabitethernet 5/1

interface gigabitethernet 5/2

interface gigabitethernet 1/1

interface gigabitethernet 2/1

interface gigabitethernet 3/1

interface gigabitethernet 3/2

interface gigabitethernet 5/1

interface gigabitethernet 5/2

interface vlan 1

end

Magnum 10RX#

I have also shown 3 commands to allow you to see the current configuration.

13
Belden, Belden Sending All The Right Signals, Hirschmann, GarrettCom, Tofino Security, Lumberg Automation and the
Belden logo are trademarks or registered trademarks of Belden Inc. or its affiliated companies in the United States and
other jurisdictions. Belden and other parties may also have trademark rights in other terms used herein. Phone: 1.800.BELDEN1 www.belden.com
• show ip inter (shows the current IP addresses and associated interfaces)
• show ip route (shows the current IP routes and protocols used)
• show runn (shows the current running system configuration)

NOTE: the configuration is for the specific 10RX system hardware that I am using your
configuration most likely will be different and reflect your hardware.

5.2 Configuring Syslog


The CLI configuration process is a layered approach based on what is being configured, it is modeled
after the IOS CLI.

Magnum 10RX#

Magnum 10RX# conf t

Magnum 10RX(config)# logging server 135 ipv4 172.29.1.5 port 514 udp

Magnum 10RX(config)# exit

Magnum 10RX# write startup-config

Building configuration ...

[OK]

Magnum 10RX#

Magnum 10RX# show logging server

Event Log Servers Table Information

--------------------------------

Priority Facility Severity Addr-Type IpAddress Port Type

--------- -------- -------------- --------- --------------- ----- ----

135(128-7) local0 7-Debugging ipv4 172.29.1.5 514 udp

14
Belden, Belden Sending All The Right Signals, Hirschmann, GarrettCom, Tofino Security, Lumberg Automation and the
Belden logo are trademarks or registered trademarks of Belden Inc. or its affiliated companies in the United States and
other jurisdictions. Belden and other parties may also have trademark rights in other terms used herein. Phone: 1.800.BELDEN1 www.belden.com
Magnum 10RX#Magnum 10RX# write startup-config

Building configuration ...

[OK]

Magnum 10RX#

Magnum 10RX #

• Conf t (configure from the terminal)


• Logging server (CLI command to configure Syslog)
• Priority number is related to the configured facility (local0)
o See table in section 2.2.4 for Priority definition
o Priority 135 includes all previous priorities 128 through 134
• Server Address is the IP address of the Syslog server
o Example 172.29.1.5
• Configure Port
o Example 514
• Configure Protocol
o Example UDP

NOTE: Make sure that you click on the save button in the lower right hand corner (note
color change of save button) of the GUI at this time as the information is not currently
saved and should you lose power or reload the system all of the changes will be lost.

5.3 Checking the new configuration for all of the changes

Magnum 10RX#

Magnum 10RX# show startup-config

logging server 135 ipv4 172.29.1.5

login block-for 1 attempts 3

login password-strength 75

15
Belden, Belden Sending All The Right Signals, Hirschmann, GarrettCom, Tofino Security, Lumberg Automation and the
Belden logo are trademarks or registered trademarks of Belden Inc. or its affiliated companies in the United States and
other jurisdictions. Belden and other parties may also have trademark rights in other terms used herein. Phone: 1.800.BELDEN1 www.belden.com
vlan 1

interface gigabitethernet 1/1

no shutdown

interface gigabitethernet 2/1

interface gigabitethernet 3/1

interface gigabitethernet 3/2

interface gigabitethernet 5/1

interface gigabitethernet 5/2

interface vlan 1

ip address 172.29.1.1 255.255.255.0

no shutdown

interface serial 6/1

interface serial 6/2

interface serial 7/1

interface serial 7/2

16
Belden, Belden Sending All The Right Signals, Hirschmann, GarrettCom, Tofino Security, Lumberg Automation and the
Belden logo are trademarks or registered trademarks of Belden Inc. or its affiliated companies in the United States and
other jurisdictions. Belden and other parties may also have trademark rights in other terms used herein. Phone: 1.800.BELDEN1 www.belden.com
!

interface serial 7/3

interface serial 7/4

interface serial 8/1

interface serial 8/2

interface t1e1 4/1

interface t1e1 4/2

ip route 0.0.0.0 0.0.0.0 172.29.1.100

interface gigabitethernet 1/1

interface gigabitethernet 2/1

interface gigabitethernet 3/1

interface gigabitethernet 3/2

interface gigabitethernet 5/1

interface gigabitethernet 5/2

17
Belden, Belden Sending All The Right Signals, Hirschmann, GarrettCom, Tofino Security, Lumberg Automation and the
Belden logo are trademarks or registered trademarks of Belden Inc. or its affiliated companies in the United States and
other jurisdictions. Belden and other parties may also have trademark rights in other terms used herein. Phone: 1.800.BELDEN1 www.belden.com
!

interface gigabitethernet 1/1

interface gigabitethernet 2/1

interface gigabitethernet 3/1

interface gigabitethernet 3/2

interface gigabitethernet 5/1

interface gigabitethernet 5/2

interface vlan 1

set sntp enable

sntp unicast-poll-interval 180

sntp unicast-server ipv4 172.29.1.150 primary

end

Magnum 10RX#

You have now configured Syslog via the CLI, saved the new configuration and checked that the changes
were made and saved.

18
Belden, Belden Sending All The Right Signals, Hirschmann, GarrettCom, Tofino Security, Lumberg Automation and the
Belden logo are trademarks or registered trademarks of Belden Inc. or its affiliated companies in the United States and
other jurisdictions. Belden and other parties may also have trademark rights in other terms used herein. Phone: 1.800.BELDEN1 www.belden.com

You might also like