[logs] Syslog and facilities
saudi sans
saudisans at gmail.com
Wed Jun 6 03:55:43 PDT 2007
Syslog has facilities and levels.
What is the "facility" in syslog ? The level concept is pretty intuitive.
As I understand "facility" field contains the source-program which
generated the log entry .
I have a central syslog server where I am aggregating logs from
several cisco routers and Unix machines.
I have given Level7 as my facility in all cisco routers and Level4 for all Unix
If I am collecting logs remotely does the "facility" field contain
anything meaningful? Does it make any difference to the log generation
? Does it matter if I set Level4 or LevelX?
More information about the LogAnalysis
mailing list