|
|
The syslog analysis features provide a central error-message logging system that you use to classify, sort, and integrate device error messages and exceptions. You can perform the following procedures with syslog analysis:
All Essentials users can generate message log reports, custom reports and summaries, and severity alert reports and summaries, as follows:
The following sections are presented in this chapter:
Scenario: You want to configure a custom report to monitor several alert types.
To configure a custom report, perform the following steps:
Step 1 Select Admin > Syslog Analysis > Define Custom Report.
Step 2 The Custom Report Configuration dialog box appears. (See Figure 6-1.)
You have three options.
In this scenario, you will add a report.
Step 3 Click Add.
The Custom Report Configuration dialog box appears. (See Figure 6-2.)
Step 4 Enter a name for the report, up to 64 characters long.
Step 5 Select the alerts you want reported from the Cisco IOS Alert Types and Catalyst Alert Types lists. Click Add after each selection. The selected alerts appear in the Selected Types list.
Step 6 Select the 24-Hour Report check box to add the report to the 24-Hour Reports task folder. The report will be generated when you select Tasks > 24 Hour Reports > Syslog Messages.
Step 7 To set more options, such as facility and severity codes, click Advanced. This step is optional.
Step 8 Click Finish.
A confirmation message appears informing you the report has been submitted.
Step 9 To create another custom report, click Configure Another.
Scenario: You want to determine which routers on your network have changed their running configurations over a specified period.
To view a custom report, perform the following steps:
Step 1 Select Tasks > Syslog Analysis > Custom Reports.
The Custom Reports dialog box appears. (See Figure 6-3.)
Step 2 Select All Routers from the System Views folder in the Views column, then click All.
Step 3 Click Next.
The Select Report Name and Dates dialog box appears. (See Figure 6-4.)
Step 4 Select the name of the report you want to view, select the date, then click Finish.
The Configuration Changes Report appears. Print the report and save it as a CSV or plain text file.
Use 24-hour reports to identify the syslog messages generated over the last 24 hours.
You can add 24-hour reports by performing the procedure for Configuring a Custom Report.
Scenario: You just came in from the field or arrived for your shift and you want to obtain a status report for the most recent syslog messages.
Select Tasks > 24-Hour Reports > Syslog Messages.
The Syslog 24-Hour Report appears. (See Figure 6-5.) Click the Custom Report Name links to view report details.
Scenario: You want to obtain a snapshot of the error message severity levels for the routers on your network.
To view the severity level summary, perform the following steps:
Step 1 Select Tasks > Syslog Analysis > Severity Level Summary.
The Severity Level Summary dialog box appears. (See Figure 6-6.)
Step 2 Select System Views > All Routers from the System Views folder in the Views column, click All in the Devices column, then click Next.
The Select Dates dialog box appears. (See Figure 6-7.)
Step 3 Select Today to see the Severity Level Summary for the current day, then click Finish.
The Severity Level Summary appears. (See Figure 6-8.) Print the report and save it as a CSV or plain text file.
Step 4 Click the links to display messages logged by the device.
You want Essentials to automatically e-mail a list of employees whenever certain syslog messages are filtered.
To define an automatic action, perform the following steps:
Step 1 Select Admin > Syslog Analysis > Define Automatic Action.
The Define Automatic Action dialog box appears.
Step 2 Click Add.
The Automatic Action Configuration Dialog Box appears. (See Figure 6-9.)
Step 3 Enter the action name.
Step 4 Add the message types you want to filter by selecting them from the list, then click Add. To remove message types from the list, select them in the left column, then click Delete. You can modify the message types by selecting them, then clicking Advanced.
Step 5 Select the Enabled check box to enable the action.
Step 6 Enter the script name in the Command Line box, or click Browse to select the script on your hard drive or network.
Step 7 Click Finish.
A confirmation message appears.
Scenario: You want to view messages for new devices that have been added to the network but are not yet managed by Essentials. You intend to use this report to add the unmanaged devices to your inventory.
To generate an unmanaged devices report, perform the following steps:
Step 1 Select Tasks > Syslog Analysis > Unmanaged Device Report.
The Select Dates dialog box appears. (See Figure 6-10.)
Step 2 Select All, then click Finish.
The Unmanaged Devices Report appears. (See Figure 6-11.)
Step 3 Print the report or save it as a CSV file.
Posted: Thu Sep 30 10:22:53 PDT 1999
Copyright 1989-1999©Cisco Systems Inc.