admin-syslog-match-add

This command is used to search a syslog file for specific events logged to it.

Syntax   admin-syslog-match-add

syslog-namename-string

Specify the name of the syslog file to use for matching an event or adding an event.

Specify the following match arguments:

name name-string

Specify the name of the log file.

Specify any of the following options:

msg-category
event|audit|system|perror|container|os-logs

Specify the category of the message to match or add in the systlog file.

msg-program program-string

Specify the name of the program used to generate log messages.

msg-name name-string

Specify the type of message to match or add.

msg-code code-number

Specify the message code to match or add.

msg-level critical|error|warn|note

Specify the message level to match or add.

msg-event-type system|port|tcp|stp|igmp|lldp||lacp|vdp|ecp|evb|ptp|openflow|storage|tacacs|openstack|mld|
mroute|vport|lacp-port-event

Specify the type of event to match or add.

msg-vnet vnet-name

Specify the name of a VNET to match or add.

msg-remote-switch node name

Specify the name of a remote switch node to match or add.

msg-user user-name

Specify user name to match or add.

msg-client-addr ip-address

Specify the client IP address.

msg-port port-number

Specify the port to match or add.

msg-vlan vlan-id

Specify the VLAN ID to match or add.

msg-bd bridge-domain name

Specify the bridge domain to match.

msg-vxlan vxlan-name

Specify the VXLAN name to match or add.

msg-args args-string

Specify a message argument to match or add.

msg-starting-point starting-point-number

Specify a starting point number for a message.

msg-length length-number

Specify the length of a message.

msg-show-time show-time-string

Specify the time the message appeared.

msg-since-last-reset|no-msg-since-last-reset

Specify the messages since the last reset.

set-facility kern|user|mail|daemon|auth|syslog|lpr|news|uucp|clock|security|ftp|ntp|audit|alert|cron|local0|local1|local2|local3|local4|local5|local6|local7|0..23

Specify the facility type to match or add.

set-severity emerg|alert|crit|err|warning|notice|info|debug|0..7

Specify the severity of the event to match or add.

Defaults   None

Access   CLI

History   

Version 1.2

Command introduced.

Version 2.3

The parameters, mld and mroute, added.

Version 2.3.3

The parameter, vport, added to message event type.

Usage   Use this command to search a syslog file and match on a certain keyword.

Examples  To add the message level critical, in the syslog file, logevents-aug13, use the following command:

CLI network-admin@switch > admin-syslog-match-add syslog-name logevents-aug13 msg-level critical

admin-syslog-match-modify

This command is used to modify a syslog file for specific events logged to it.

Syntax   admin-syslog-match-modify

syslog-name name-string

The name of the syslog file to use for matching an event or adding an event.

Specify the following match arguments:

name name-string

Specify the name of the syslog file.

Specify any of the following options:

msg-category
event|audit|system|perror|container|os-logs

The category of the message to match or add in the systlog file.

msg-program program-string

The name of the program used to generate log messages.

msg-name name-string

The type of message to match or add.

msg-code code-number

The message code to match or add.

msg-level critical|error|
warn|note

The message level to match or add.

msg-event-type systm|port|tcp|stp|igmp|lldp|lacp|vdp|ecp|evb|ptp|
openflow|storage|tacacs|openstack|mld|mroute|
vport|lacp-port-event

The type of event to match or add.

msg-vnet vnet-name

The name of a VNET to match or add.

msg-remote-switch node name

The name of a remote switch node to match or add.

msg-user user-name

User name to match or add.

msg-client-addr ip-address

The client IP address to match.

msg-port port-number

The port to match or add.

msg-vlan vlan-id

The VLAN ID to match or add.

msg-bd bridge-domain name

The bridge domain name to match.

msg-vxlan vxlan-name

The VXLAN name to match or add.

msg-args args-string

Specify a message argument to match or add.

msg-starting-point starting-point-number

Specify a starting point number for a message.

msg-length length-number

Specify the length of a message.

msg-reverse|no-msg-reverse

Specify if the message is reversed or not.

msg-show-time show-time-string

The time the message appeared.

msg-since-last-reset|no-msg-since-last-reset

Messages since the last reset log.

set-facility kern|user|mail|daemon|auth|syslog|lpr|news|uucp|clock|security|ftp|ntp|audit|alert|cron|
local0|local1|local2|local3|local4|local5|local6|local7|0..23

The facility type to match or add.

set-severity emerg|alert|crit|err|warning|notice|info|debug|0..7

The severity of the event to match or add.

Access   CLI

History   

Version 1.2

Command introduced.

Version 2.3

The parameters, mld and mroute, added.

Version 2.3.3

The parameter, vport, added to message event type.


Usage   Use this command to modify a search term for a syslog file and match on a certain keyword.

Examples  To modify the syslog to capture messages with the level critical, in the syslog file, logevents-aug13, use the following command:

CLI network-admin@switch > admin-syslog-match-modify syslog-name logevents-aug13 msg-level critical

admin-syslog-match-remove

This command is used to remove a syslog file from the syslog match string.

Syntax   admin-syslog-match-remove syslog-name name-string name name-string

syslog-name name-string

The name of the syslog file to remove from the matching string

Specify the following match arguments:

name name-string

Specify the name of the match.

Defaults   None

Access   CLI

History   Command introduced in nvOS Version 1.2.

Usage   Use this command to remove a syslog match parameter.

Examples  To remove the syslog file, june2012, from the matching string, use the following command:

CLI network-admin@switch > admin-syslog-match-remove june2012

admin-syslog-match-show

This command is used to display a syslog file for specific events logged to it.

Syntax   admin-syslog-match-show

syslog-name name-string

Displays the name of the syslog file to use for matching an event or adding an event.

And the following match arguments:

msg-category
event|audit|system|perror|container|os-logs

Displays the category of the message to match or add in the systlog file.

msg-program program-string

Displays the name of the program used to generate log messages.

msg-pid pid-number

Displays the    product ID generating log messages to match

msg-name name-string

Displays the type of message.

msg-code code-number

Displays the message code.

msg-level critical|error|
warn|note

Displays the message level.

msg-event-type systm|port|tcp|stp|igmp|lldp|lacp|vdp|ecp|evb|ptp|

openflow|storage|tacacs|openstack|mld|mroute|
vport|lacp-port-event

Displays the type of event.

msg-vnet vnet-name

Displays the name of a VNET.

msg-remote-switch node name

Displays the name of a remote switch node.

msg-user user-name

Displays the user name.

msg-client-pid client-pid-numbe

Displays the product ID to match.

msg-client-pid client-pid-number

Displays the client product ID.

msg-client-addr ip-address

Displays the client IP address.

msg-port port-number

Displays the port.

msg-vlan vlan-id

Displays the VLAN ID.

msg-bd bridge-domain name

Displays the bridge domain to match.

msg-vxlan vxlan-name

Displays the VXLAN name.

msg-start-time date/time: yyyy-mm-ddThh:mm:ss

Displays the start time of the messages.

msg-end-time date/time: yyyy-mm-ddThh:mm:ss

Displays the end time of the messages.

msg-duration duration: #d#h#m#s

Displays the duration of the messages.

msg-count number

Displays the message count from 1 to 50000.

msg-starting-point starting-point-number

Displays the starting point of the messages.

msg-length length-number

Displays the length of the messages.

msg-reverse|no-msg-reverse

Displays if the messages are reversed or not.

msg-since-last-reset|no-msg-since-last-reset ]

Displays the messages since the log reset.

name name-string

Displays the name.

set facility kern|user|mail|daemon|auth|syslog|lpr|news|uucp|clock|security|ftp|ntp|audit|alert|cron|local0|local1|local2|local3|local4|local5|local6|local7|0..23

Displays the facility type.

set severity emerg|alert|crit|err|warning|notice|info|debug|0..7

Displays the severity of the event to match or add.

Defaults   None

Access   CLI

History   

Version 1.2

Command introduced.

Version 2.3

The parameters, mld and mroute, added.

Version 2.3.3

The parameter, vport, added to message event type.


Usage   Use this command to display search terms for a syslog file.

Examples  To display the search terms for syslog file, logevents-aug13, use the following command:

CLI network-admin@switch > admin-syslog-match-show syslog logevents-aug13