LOGGING CONFIGURATION FOR IOS


We are now going to enable logging on your router.

a. Connect to your router from your NOC box (192.168.10X.30)

	# ssh tldadmin@192.168.10X.1 
	** Note: remember to use your group number instead of X, and your password is tldadmin!

   You should get the prompt:

	TLDX-RTR>

b. Go into enable mode (type "enable" at the prompt):

	TLDX-RTR> enable
	** Note: the enable password is tldadmin!

   You should now get the prompt:

	TLDX-RTR#

c. Enter configuration mode:

	TLDX-RTR# configure terminal
	
   You should see:	
	Enter configuration commands, one per line.  End with CNTL/Z.
	TLDX-RTR(config)#

   We are now in configuration mode.  Let's enable logging, as we
   saw in the Cisco Configuration Elements slides.

   After you have entered enable and configure mode as specified above,
   enter the following (remember to replace X with the network for your
   TLD registry)

    	TLDX-RTR(config)# logging 192.168.10X.30
	TLDX-RTR(config)# logging facility local5
	TLDX-RTR(config)# logging trap debugging

   Then press CTRL-Z, and finally

   	TLDX-RTR# write

d. Once that is done, you should begin to see messages arriving on your
   NOC host where syslog-ng is running.

   On your NOC machine, go to

   /var/log/network/

	NOC-TLDX> ls -l

   You should see a directory with the year, and under it a directory      
   with the current month, and under that, a directory for the current 
   date.

   If not, log back into your router, and generate som log messages
   by going into enable mode + configure mode, then exit again.

	TLDX-RTR> enable
	TLDX-RTR# configure terminal
	TLDX-RTR(config)# exit

e. Tip: you can see the syslog messages by running the following command on your NOC box:

   	NOC-TLDX> sudo tcpdump -n port 514
   
   You should see output similar to the following:

     09:30:58.054189 IP 192.168.101.1.58516 > 192.168.101.30.514: SYSLOG local5.notice, length: 91