For When You Can't Have The Real Thing
[ start | index | login ]
start > VMware > ESXi > 6.7 > syslog

syslog

Created by dave. Last edited by dave, 87 days ago. Viewed 120 times. #1
[edit] [rdf]
labels
attachments
(2018-09-20)

Problem

I want esxi logs to go to a syslog server.

Solution

CLI:

esxcli system syslog config set --loghost='tcp://10.15.30.42'
esxcli system syslog reload
esxcli network firewall ruleset set --ruleset-id=syslog --enabled=true
esxcli network firewall refresh

vCenter GUI:

  • Hosts -> Host -> Configure -Advanced System Settings
  • find key: Syslog.global.LogHost
  • set value as above
Targets

Syslog targets have three components:

ComponentValues
Transporttcp://
udp://
ssl://
DestinationIP or DNS name resolvable by host
Portusual port values

Examples:

  • udp://loghost:514
  • tcp://1.2.3.4:1154

Notes

Having a syslog server configured to catch said logs is left as an exercise for the reader.

Traditionally the syslog messages are not very useful because VMware wants to sell you a log management system as part of vCenter. So personally I don't usually bother setting this up unless a customer wants it.

no comments | post comment
This is a collection of techical information, much of it learned the hard way. Consider it a lab book or a /info directory. I doubt much of it will be of use to anyone else.

Useful:


snipsnap.org | Copyright 2000-2002 Matthias L. Jugel and Stephan J. Schmidt