× NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Start a New Discussion

Start a New Discussion

Reply

Re: WAX610: how to set up syslog log level?

cr1cr1
Follower
Follower
‎2023-10-31 07:44 AM
‎2023-10-31 07:44 AM

WAX610: how to set up syslog log level?

I have 3 WAX610 configured in a single SSID using Netgear Insight. 

Whether I configure it on Insight or locally on the Web portal, I cannot choose a log level when enabling syslog to send the syslogs to an external server. The log level seems to be "debug" so the APs are very talkative... 

Is there a hidden way to change the syslog level?

 

If not, how to ask for an enhancement request?  The current implementation of syslog is not very useful if we just want to receive Warnings and Errors. 

Message 1 of 2
0 Kudos
Reply

Accepted Solutions
schumaku
Guru Guru
Guru
‎2023-11-01 01:29 AM
‎2023-11-01 01:29 AM

Re: WAX610: how to set up syslog log level?

The BSD syslog does always start from the point where the Logger does send all messages - regardless of the Facility or the Severity - to the "next hop" syslog server. The definition of what must be stored, displayed to the admin, or subsequently forwarded to the next syslog server is always done on the destination, never on the origin (the server, the appliance, the router, the switch, ....). 

 

Few sophisticated security appliances for example indeed provide options to control and direct the selected messages into a defined facility, into a defined path, to one or multiple syslog servers on a syslog collector - this isn't standard by far. 

 

sophisticated logger.PNG

 

It's a lot of effort, inherits a certain risk to miss really critical messages or details, to hide insight from security audit - that's why there is nothing like this on most switches, servers, routers, ...

View solution in original post

Message 2 of 2
Reply

All Replies
schumaku
Guru Guru
Guru
‎2023-11-01 01:29 AM
‎2023-11-01 01:29 AM

Re: WAX610: how to set up syslog log level?

The BSD syslog does always start from the point where the Logger does send all messages - regardless of the Facility or the Severity - to the "next hop" syslog server. The definition of what must be stored, displayed to the admin, or subsequently forwarded to the next syslog server is always done on the destination, never on the origin (the server, the appliance, the router, the switch, ....). 

 

Few sophisticated security appliances for example indeed provide options to control and direct the selected messages into a defined facility, into a defined path, to one or multiple syslog servers on a syslog collector - this isn't standard by far. 

 

sophisticated logger.PNG

 

It's a lot of effort, inherits a certain risk to miss really critical messages or details, to hide insight from security audit - that's why there is nothing like this on most switches, servers, routers, ...

Message 2 of 2
Reply
Top Contributors
See All
Discussion stats
  • 1 reply
  • ‎2023-10-31 07:44 AM
  • 771 views
  • 2 kudos
  • 2 in conversation
Announcements