Community
- Command Central
- MVP Program
- Monthly Mission
- Blogs
- Groups
- Events
- Media Vault
Products
- Observability
- Network Management
- Application Management
- IT Security
- IT Service Management
- System Management
- Database Management
Content Exchange
- SolarWinds Platform
- Server & Application Monitor
- Database Performance Analyzer
- Server Configuration Monitor
- Network Performance Monitor
- Network Configuration Manager
- SQL Sentry
- Web Help Desk
Free Tools & Trials

syslog is not getting captured for few routers

raghu_m

HI All,

we have cisco routers where in many of the device loggs are not being captured in syslog server from last one month.

Earlier everything was working fine. Device level configuration is also fine.

pls check and suggest.

Find more posts tagged with

Accepted answers

All comments

bkyle

If you get a wireshark capture, and filter for UDP port 514, do you see messages from those routers?

dave_ent

Are any of the syslog packets getting through? If some of the packets are coming in but you are missing some from randomly then you might be dropping them due to link congestion along the path from the router to the syslog server. Syslog packets are not automatically tagged so they would show up as default traffic in a QoS policy so are likely to be dropped.

If you are receiving nothing then I would do as bkyle suggested and run a packet capture on the syslog server. Another think to keep in mind is that the syslog server built into NPM can't handle a ton of syslog so depending on your overall syslog load that could also be an issue.