Configure external syslog server on NSX manager for central logging or SIEM purposes

From Notes_Wiki

Home > VMWare platform > VMWare NSX > Configure external syslog server on NSX manager for central logging or SIEM purposes

Configuring syslog server on NSX requires doing SSH to cluster IP / NSX manager IP and using: 

set logging-server <syslog-server> proto udp level info

Later we can validate settings via: 

get logging-servers

After this we still need to go to Distributed firewall and for each firewall rule enable option of logging for that rule so that we can capture connection logs.

See: https://iwanhoogendoorn.nl/index.php/Configuring_syslog_services_on_NSX-T_components


Home > VMWare platform > VMWare NSX > Configure external syslog server on NSX manager for central logging or SIEM purposes

Retrieved from "http://www.sbarjatiya.com/notes_wiki/index.php?title=Configure_external_syslog_server_on_NSX_manager_for_central_logging_or_SIEM_purposes&oldid=8210"