Cisco Switch logs

Labidi_Ayoub · May 2, 2019, 1:57pm

Hello everyone,

Please i would be grateful if someone help me how i collect cisco Switch logs with ELK, it is my first time with ELK , I installed ELK in centos 7 .

phillhocking · May 2, 2019, 8:24pm

After that, just point your Cisco switch at this new rsyslog destination:

logging host my.rsyslog.host.ip

More information about logging for the Cisco 2900 series is here and I imagine that the commands are similar for most of their switches: https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst2960/software/release/12-2_55_se/configuration/guide/scg_2960/swlog.html

Labidi_Ayoub · May 7, 2019, 10:08am

?? syslog==>logstash==> elasticsearch ?
I want a clear way to collect, normalize the cisco switch logs with ELK

system · June 4, 2019, 10:08am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Centralized Syslog management for Cisco Switches Logstash	6	8232	February 21, 2020
Normalize the logs with ELK Logstash	41	5581	June 7, 2019
Syslog Cisco ASA Elasticsearch	3	3019	March 18, 2017
How to send Cisco devices logs to Logstash? Beats filebeat	3	3231	December 11, 2019
Groking of cisco switch logs (non asa) Logstash	1	2278	March 12, 2018