Enabling Log Forwarding

Enabling Log Forwarding on Fluent-x

This section describes the procedure involved in enabling Log Forwarding on Fluent-x and Splunk.

This section describes the procedure involved in enabling Log Forwarding on Fluent-x.

Use the following configuration to enable Log Forwarding on Fluent-x.

configure 
logging fluent host fluentbit/fluentd_endpoint_fqdn/ipv4_address port endpoint_port 

NOTES:

  • logging fluent – Specifies the Fluent forwarding parameters.

  • host fluentbit/fluentd_endpoint_fqdn/ipv4_address – Specifies the Fluentbit or Fluentd instance host information.

  • port endpoint_port – Specifies the Fluentbit or Fluentd instance port information.

The log forwarding to an external Fluent-D or Fluent-Bit instance, where logs can be streamed to supporting application such as ElasticSearch.

Example:
cee# configure terminal
  logging fluent host 172.16.181.41 port 8001
  exit

Enabling Log Forwarding on Splunk

Use the following configuration to enable Log Forwarding on Splunk.

configure 
	   logging splunk host splunk_endpoint_fqdn/ipv4_address port hec_port auth-token splunk_configured_token 

NOTES:

  • logging splunk – Specifies the Splunk endpoint.

  • host splunk_endpoint_fqdn/ipv4_address – Specifies the Splunk host information.

  • port hec_port – Specifies the Splunk port information.

  • auth-token splunk_configured_token – Specifies the Splunk Authentication Token for the HTTP Event Collector interface.

The following example configures log forwarding to an external Splunk server.

Example:
cee# configure terminal
  logging splunk host 172.16.181.41 port 8001
  exit