Application Delivery (ADX)

Reply
Occasional Contributor
Posts: 16
Registered: ‎06-13-2011

Send port up/down message to Syslog?

How can we configure logging to send "notification" messages to syslog?  (There must be a way, I just can't find it!)

Here is a sample:   Jun 24 15:24:25:N:L4 server 192.168.10.201 Web201 port 8122 is up

Thanks,

Mike

Community Manager
Posts: 100
Registered: ‎01-13-2009

Re: Send port up/down message to Syslog?

Hi Mike,

The syslog information is contained in the ServerIron Admin Guide.  It starts on page 64 if you are looking at the current version which is posted to Brocade.com (12.5.1).  However, in thinking more about your question, it seemed that maybe you were looking something more specific.  As an example, are you looking for a log if the port is down due to some hardware failure (switch port is down) or perhaps the server connected to that port has failed (switch port is up but no longer linked).  I it would be good to better understand what you are looking for here.

Thanks!

Occasional Contributor
Posts: 16
Registered: ‎06-13-2011

Re: Send port up/down message to Syslog?

Martin,

Thanks for the response.  We were having issues with one of our syslog servers, but that appears to be resolved now.

We're still having an issue where log entries are not created/written on server/port down situations.  For example, when we enable a real server, we see these log messages:

L4 server xx.xx.xx.xx Name is up

L4 server xx.xx.xx.xx Name port 443 is up

However, we don't see entries in the log when a server is disabled or a port fails a healthcheck.

Is there a specific configuration setting that controls these?

Thanks,

Mike

Community Manager
Posts: 100
Registered: ‎01-13-2009

Re: Send port up/down message to Syslog?

Hi Mike,

Sorry about the delay in getting back to you.  So, the Real Server Down and the Real Server Port Down are included in the default SNMP traps and are enabled by default (check out page 33 and 34 in the ServerIron 12.5.01 Admin Guide) so it should be working. However, you could check out your config to ensure nobody has entered the "no" for the down conditions like the example shown on page 36 of the ServerIron 12.5.01 Admin Guide. The other item to look at would be how you are creating the server down condition itself. Like are you shutting the server down or something else?

Thanks!

Occasional Contributor
Posts: 16
Registered: ‎06-13-2011

Re: Send port up/down message to Syslog?

Thanks again for the response.

Running a "show snmp server" command showed all traps to be enabled:

Traps

                   Cold start: Enable

                      Link up: Enable

                    Link down: Enable

               Authentication: Enable

     Locked address violation: Enable

    Power supply state change: Enable

                  Fan failure: Enable

Redundant module state change: Enable

          Temperature warning: Enable

                 STP new root: Enable

          STP topology change: Enable

                         ospf: Enable

                        vrrpe: Enable

     L4 maximum session limit: Enable

             L4 TCP SYN limit: Enable

     L4 server max connection: Enable

                 L4 server up: Enable

               L4 server down: Enable

            L4 server port up: Enable

          L4 server port down: Enable

            L4 switch standby: Enable

             L4 switch active: Enable

              HTTP match-list: Enable

             Firewall standby: Enable

              Firewall active: Enable

             Firewall path up: Enable

           Firewall path down: Enable

            L4 GSLB remote up: Enable

          L4 GSLB remote down: Enable

L4 GSLB remote controller up: Enable

L4 GSLB remote controller down:Enable

    L4 GSLB healthcheck IP up: Enable

  L4 GSLB healthcheck IP down: Enable

L4 GSLB healthcheck IP port up:Enable

L4 GSLB healthcheck IP port dowEnable


Interestingly, a couple in the manual (ie "Real Server Down") is not show here (unless it is "L4 Server Down"). 


I am  disabled a real server to try to generate a trap.


Mike


Community Manager
Posts: 100
Registered: ‎01-13-2009

Re: Send port up/down message to Syslog?

Hi Mike,

Thanks for checking and sending the output. Very strange that you get the UP but not the DOWN. I'm thinking the only thing left is to look at maybe increasing the severity of the simulated down condition. You mentioned you disabled the server so maybe something like shutting it down? I know disabling it should work though. You may also wish to contact TAC and open up a ticket since you are getting the up but not the down however it appears both are enabled.

Thanks!

Super Contributor
Posts: 1,087
Registered: ‎12-13-2009

Re: Send port up/down message to Syslog?

This may be only triggered for a hard fault and not by disabling the server, as that is an admin down and therefore planned.

Contributor
Posts: 47
Registered: ‎07-14-2010

Re: Send port up/down message to Syslog?

Yes, Michael Schipp is correct.

I checked this with engineering before. Syslogs are sent out when you disable application port on the real server side.

If we take down port manually by CLI command, that will not trigger SYSLOG. So, here is the answer.

When port down by CLI commands below.

1. port xxxx disable  = No syslogs

2. port disable-all     = No syslogs

When port up by CLI commands below.

3. no port xxxx disable  = syslogs generated

4. no port disable-all     = No syslogs (we don't syslog because too many syslog message may be sent out at once)

Thanks.

//Kono

Occasional Contributor
Posts: 16
Registered: ‎06-13-2011

Re: Send port up/down message to Syslog?

Ok,  if you disable a real server you will NOT get syslog entries.

However, I'm a little confused by Kono's comments: 

"Syslogs are sent out when you disable application port on the real server side.". 

and

When port down by CLI commands below.

1. port xxxx disable  = No syslogs

These seem to contradict.  Am I missing something?

Thanks,

Mike

Contributor
Posts: 47
Registered: ‎07-14-2010

Re: Send port up/down message to Syslog?

>>"Syslogs are sent out when you disable application port on the real server side.".

I meant this as disable apache or IIS on server side.

kkono@ub00: ~# /etc/Inuit. d/apache2 stop

>> When port down by CLI commands below.

>> 1. port xxxx disable  = No syslogs

This is about ADX's CLI manipulation.

Thanks.

//Kono

Join the Community

Get quick and easy access to valuable resource designed to help you manage your Brocade Network.