logging

logging [ap-debug|arm|arm-user-debug|facility|network|peer-debug|security|system|user|user-debug|wireless|<ipv4addr>|<ipv6addr>]

Description

Use this command to specify the IP address of the remote logging server, facility, severity, and the type. The local use facilities (local0, local1, local2, local3, local4, local5, local6, and local7) are not reserved for specific message-generating sources, and can be used for sending syslog messages. Use the show logging command to verify that the device sends logging messages.

There are eight logging severity levels, each with its associated types of messages. Each level also includes the levels below it. For example, if you set the logging level to informational (6), all messages from level 0 through level 5 (from emergencies through notifications) are also logged. The warnings severity level is set by default for all message categories.

Only the logging level warnings security subcat ids and logging level warnings security subcat ids-ap subcategories are enabled by default. Other subcategories are not generated by default even their severity is warning or higher.

Parameter

Description

ap-debug <name>

AP troubleshooting messages. You must specify a debug value.

arm

level

process

subcat

ARM messages.

arm-user-debug <mac>

ARM user troubleshooting messages. You must specify a MAC address.

facility

Set the facility to be used when logging to the remote syslog server. The local use facilities (local0, local1, local2, local3, local4, local5, local6, and local7) are not reserved for specific message-generating sources, and can be used for sending syslog messages.

local 0 to local 7

network

level

process

subcat

Network messages.

peer-debug <mac>

Peer Debug Logs.

security

level

process

subcat

Security messages.

system

level

process

subcat

System messages.

user

level

process

subcat

User messages.

user-debug <mac>

User troubleshooting messages. You must specify a MAC address.

wireless

level

process

subcat

Wireless messages.

<ipv4addr>

To set the remote logging server IPv4 address.

A.B.C.D

dest-port <destination-port>

Select destination port for Syslog messages to this IP address.

facility

The facility to be used when logging to a remote syslog server.

local 0 to local 7

format

The format of the logs when logging to a remote syslog server.

  • cef - Common Event Fformat
  • bsd-standard - Berkeley Software Distribution standard or RFC-3164 format

severity

Set the remote logging server severity to:

  • alerts - Immediate action required
  • critical - Critical Condition
  • debugging - Debug Messages
  • emergencies - System is unusable
  • errors - Error Conditions in the system
  • informational - Informational Messages
  • notifications - Normal but significant condition
  • warnings - Warning condition

source-interface <VLAN number>

Select source address of outgoing Syslog messages.

tls

Enable TLS option for rsyslog.

type

Set the remote logging server message type to:

  • ap-debug - AP Debug Logs
  • arm - ARM logs
  • arm-user-debug - ARM User Debug Logs
  • network - Network logs
  • security - Security logs
  • system - System logs
  • user- User logs
  • user-debug - User Debug Logs
  • wireless - Wireless logs

<ipv6addr>

To set the remote logging server IPv6 address.

Default: X:X:X:X::X

dest-port <destination-port>

Select destination port for Syslog messages to this IP address.

facility

The facility to be used when logging to a remote syslog server.

Range: local 0 to local 7

format

The format of the logs when logging to a remote syslog server.

  • cef - Common Event Fformat
  • bsd-standard - Berkeley Software Distribution standard or RFC-3164 format

severity

Set the remote logging server severity to:

  • alerts - Immediate action required
  • critical - Critical Condition
  • debugging - Debug Messages
  • emergencies - System is unusable
  • errors - Error Conditions in the system
  • informational - Informational Messages
  • notifications - Normal but significant condition
  • warnings - Warning condition

type

Set the remote logging server message type to:

  • ap-debug - AP Debug Logs
  • arm - ARM logs
  • arm-user-debug - ARM User Debug Logs
  • network - Network logs
  • security - Security logs
  • system - System logs
  • user- User logs
  • user-debug - User Debug Logs
  • wireless - Wireless logs

level

The message severity level, which can be one of the following (in order of severity level):

  • alerts - Any condition requiring immediate attention and correction.
  • critical - Any critical conditions, such as hard drive errors.
  • debugging - Messages containing information for debugging purposes.
  • emergencies - Panic conditions that occur when the system becomes unstable.
  • errors - Error conditions.
  • informational - Significant events of a non-critical and normal nature.
  • notifications - Normal but significant condition.
  • warnings - Warning messages.

process

Controller process, which can be one of the following:

  • aaa - AAA logging
  • activate - Integration and communication with an Activate server
  • amon_recvr - AMON receiver
  • amon_sender - AMON sender
  • apprf - APPRF feature
  • approc - AP processes
  • armd - ARM processes
  • authmgr - User authentication
  • ble_relay - BLE relay process
  • bocmgr - BOC manager process
  • cert_dwnld - Certificate download process
  • certmgr - Certificate manager
  • cfgdist - Config Distributor
  • cfgm - Configuration Manager
  • cli - Command Line Interface
  • cluster_mgr - Cluster Manager
  • cpsec - Control plane security
  • crypto - VPN (IKE/IPsec)
  • cts - Transport service
  • dbsync - Database synchronization
  • dds - Logging for DDS processes
  • dhcpd - DHCP packets
  • dpagent - DPAGENT process
  • esi - External Services Interface
  • extifmgr - External Interface Manager
  • fpapps - Layer 2 and 3 control
  • fw_visibility - Firewall visibility processes
  • gsmmgr - GSM manager
  • ha_mgr - High availability manager
  • hcm - Health check process
  • httpd - Apache process
  • hwmon - Hardware monitoring
  • iapmgr - Instant AP manager process
  • ip_flow_export - IP Flow Export process
  • ipstm - Instant station manager process
  • l2tp - L2TP
  • lagm - Logging for lagm process
  • licensemgr - License manager
  • llldp - LLLDP process
  • localdb - Local database
  • mdns - Multicast DNS proxy
  • mobileip - Mobile IP
  • mon_serv - mon_serv process
  • mon_serv_fwv - mon_serv_fwv process
  • npppd - NPPPD
  • ofa - OpenFlow Agent Process
  • ospf - OSPF logging
  • packetfilter - Packet filtering of messaging and control frames
  • phonehome - PhoneHome
  • pim - Protocol Independent Multicast
  • pppd - PPP
  • pppoed - PPPoE
  • pptp - PPTP
  • processes - Run-time process
  • profmgr - Profile Manager
  • publisher - Publish subscribe service
  • radvd - RA daemon
  • resolvwrap - Resolve wrap process
  • rfm - RF Troubleshooting Manager
  • rng-mgr - RNG Manager
  • rsync - Rsync
  • rtpa - RTPA process
  • sc_replication_mgr - SC Replication Manager
  • snmp - SNMP
  • spectrum - Spectrum analysis processes
  • stm - Station management
  • survival - Auth survival
  • syslogdwrap - Syslogd wrap
  • traffic - Traffic process
  • ucm - Unified Communication and Collaboration processes
  • upgrademgr - Upgrade Manager
  • util-proc - Util process
  • vrrp - Logging for vrrp process
  • web_cc - Web Content classification
  • webd - Web Daemon.
  • wms - Wireless management

subcat

Message subcategory, which depends upon the message category specified. The following lists the subcategories available for each message category:

  • ap-debug: all, ap-config, ha, sdn
  • arm: all, client-match, radio-mgmt
  • arm-user-debug: all
  • network: all, cluster, dhcp, gp, mobility, packet-dump, sdn
  • security: aaa, all, auth-amon, certinit, certmgr, cluster, cpnw, cpsec, db, 802.1X, firewall, HA, ids, ids-ap, kerberos, mobility, packet-trace, vpn, webserver, wl-sync
  • system: all, amon, amon-ale, amon-amp, ap, ap-config, cluster, configuration, cpnw, gp, ha, mapc, messages, ofc-event-dispatcher, ofc-flow-manager, ofc-packet-dispatcher, ofc-routing-switch, ofc-switch-manager, ofc-topology, ofc-topology-discovery, pan, reg-tbl, snmp, validation, webserver
  • user: all, captive-portal, client-match, cpnw, 802.1X, mapc, pan, radius, vpn
  • user-debug: all, configuration
  • wireless: all

Example

The following command adds the remote logging server with the IP address 10.1.2.3 with a user log type using local4.

(host) [mynode] (config) #logging 10.1.2.3 facility local4

Command History

Release

Modification

ArubaOS 8.9.0.0

The tls subparameter was introduced.

ArubaOS 8.7.0.0

The peer-debug parameter was introduced.

ArubaOS 8.2.0.0

New system processes called vrrp and lagm were added to debug issues related to the vrrp process and lagm process.

ArubaOS 8.1.0.0

The logging level <severity> was moved to the end of the command string.

The format parameter was introduced.

ArubaOS 8.0.0.0

Command introduced.

Command Information

Platforms

License

Command Mode

Available on all platforms

Base operating system.

Config mode on Mobility Conductor.