Syslog format – Cisco VPN 3002 User Manual

Page 102

Advertising
background image

9-6

VPN 3002 Hardware Client Reference

OL-1893-01

Chapter 9 Events

Configuration | System | Events | General

Syslog Format

Click the Syslog Format drop-down menu button and choose the format for all events sent to UNIX
syslog servers. Choices are:

Original = Original VPN 3002 event format with information on one line. Each entry in the event
log consists of the following fields:

Sequence Date Time SEV=Severity Class/Number RPT=RepeatCount String

Sequence: The sequence number of the event.

Date: The date the event occurred. The date is in the following format: MM/DD/YYYY.

Time: The time the event occurred. The time is in the following format: hh:mm:ss.ttt.

Severity: The severity of the event (1-13). To see how this original severity level maps to Cisco
IOS severity levels, see

Table 9-2

.

Class/Number: The event class and event number. For a list of event classes, see the “Events”
chapter.

RepeatCount: The number of times this particular event has occurred since the VPN 3002 was
last booted.

String: The description of the event. The string sometimes includes the IP address of the user
whose session generated the event.

For example:

3 12/06/1999 14:37:06.680 SEV=4 HTTP/47 RPT=17 10.10.1.35 New administrator login:

admin.

Cisco IOS Compatible = Event format that is compatible with Cisco syslog management
applications. Each entry in the event log is one line consisting of the following fields:

Sequence: Date Time TimeZone TimeZoneOffset %Class-Severity-Number: RPT=RepeatCount:
String

Sequence: The sequence number of the event.

Date: The date the event occurred. The date is in the following format: YYYY MMM DD.

Time: The time the event occurred. The time is in the following format: hh:mm:ss.ttt.

TimeZone: The time zone in which the event occurred.

TimeZoneOffset: The offset of the time zone from GMT.

Class: The event class. For a list of event classes, see the “Events” chapter.

Severity: The Cisco IOS severity of the event (0-7).

Table 9-3

shows the mapping between

Cisco IOS format severity levels and Original format severity levels.

Number: The event number.

RepeatCount: The number of times this particular event has occurred since the VPN
Concentrator was last booted.

String: The description of the event. The string sometimes includes the IP address of the user
whose session generated the event.

For example:

3 1999 Dec 06 14:37:06.680 EDT -4:00 %HTTP-5-47:RPT=17 10.10.1.35: New

administrator login: admin.

Advertising
Popular Brands
Popular manuals