Enabling Log Forwarding
Enabling Log Forwarding on Fluent-x
This section describes the procedure involved in enabling Log Forwarding on Fluent-x and Splunk.
This section describes the procedure involved in enabling Log Forwarding on Fluent-x.
Use the following configuration to enable Log Forwarding on Fluent-x.
configure
logging fluent host fluentbit/fluentd_endpoint_fqdn/ipv4_address port endpoint_port
NOTES:
-
logging fluent – Specifies the Fluent forwarding parameters.
-
host fluentbit/fluentd_endpoint_fqdn/ipv4_address – Specifies the Fluentbit or Fluentd instance host information.
-
port endpoint_port – Specifies the Fluentbit or Fluentd instance port information.
The log forwarding to an external Fluent-D or Fluent-Bit instance, where logs can be streamed to supporting application such as ElasticSearch.
cee# configure terminal
logging fluent host 172.16.181.41 port 8001
exit
Enabling Log Forwarding on Splunk
Use the following configuration to enable Log Forwarding on Splunk.
configure
logging splunk host splunk_endpoint_fqdn/ipv4_address port hec_port auth-token splunk_configured_token
NOTES:
-
logging splunk – Specifies the Splunk endpoint.
-
host splunk_endpoint_fqdn/ipv4_address – Specifies the Splunk host information.
-
port hec_port – Specifies the Splunk port information.
-
auth-token splunk_configured_token – Specifies the Splunk Authentication Token for the HTTP Event Collector interface.
The following example configures log forwarding to an external Splunk server.
cee# configure terminal
logging splunk host 172.16.181.41 port 8001
exit