Ruijie Community

Title: How to Configuring the Syslog Server? [Print this page]

Author: zhangqiao@ruiji Time: 2025-4-7 23:12
Title: How to Configuring the Syslog Server?

Application Scenario

If the firewall is not installed with a hard disk upon factory delivery, logs can only be stored in the memory (for no longer than 1 day) and all the logs in the memory will be lost after device restart. To ensure that more log information can be obtained, the system logs and security logs of the firewall can be transmitted to a third-party log platform through Syslog for storage and analysis.

The system supports a maximum of three Syslog servers.

Procedure

(1) ChooseSystem >Log Config >SYSLOG Settings.

(2) Set parameters for the Syslog server.

Item	Description	Remarks
Server IP	IP address of the Syslog server.	Set this parameter to the IP address of the Syslog server.
Port	Port number for receiving the log notifications.	The default value is 514. The value must be the same as that configured on the Syslog server.
Device SN Field Name	Customize the SN field name of the firewall. If the device SN is 123456789 and this field is configured as test, the SN field name displayed on the third-party log platform is test, namely, test="123456789". If this field is not configured, the default field name of the device SN sent by the device to the third-party log platform is deviceId, namely, deviceId="123456789".	[Example] test
Standard Protocol Version	Protocol used for formatting logs.	Select a protocol version supported by the Syslog server. [Example] RFC5424
Log Language Encoding	Encoding format of the Syslog language.	[Example] GBK
Logs to Be Sent to Syslog Server	Types of logs to be sent to the Syslog server.	Select specific log types to be forwarded to the server. [Example] System Log

(3) Click Save.

Welcome to Ruijie Community (https://community.ruijienetworks.com/)