Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
Bookmark
|
Subscribe
|
5881
Views
25
Helpful
7
Replies

Logging Traps

zekebash
Level 1
Level 1

‎06-22-2021 08:03 AM - edited ‎06-22-2021 08:03 AM

Hello,

 

This should be a simple question. We configured our C9300, C9200, and ISR4331 devices with "Logging trap critical" and sending the logs to a syslog server. When we check the log entries, we find entries pertaining to BPDUs or access port status (UP/DOWN). Out goal is not log these low level conditions but the critical ones.

 

My question is why does the "CRITICAL" trap create these type of low level log entries? Which trap level would prevent sending these types of low level conditions (see below)?

 

Thanks in advance.

 

 

186>250322: Jun 22 14:54:49.604: %SPANTREE-2-BLOCK_BPDUGUARD: Received BPDU on port Gi1/0/27 with BPDU Guard enabled. Disabling port.

Labels:
0 Helpful
7 Replies 7

inderdeeps
Level 4
Level 4

‎06-22-2021 08:08 AM

@zekebash : Check if you can change the sev of the logs 

Test-SW-121(config)#logging trap ?
<0-7> Logging severity level
alerts Immediate action needed (severity=1)
critical Critical conditions (severity=2)
debugging Debugging messages (severity=7)
emergencies System is unusable (severity=0)
errors Error conditions (severity=3)

zekebash
Level 1
Level 1
In response to inderdeeps

‎06-22-2021 08:31 AM

yes, I can. My question is which severity level would not send those low level alerts?

 

Thanks!

0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame

‎06-22-2021 08:23 AM

logging trap level

where level is one of the following, listed in descending order of priority:

  • emergencies
  • alerts
  • critical
  • errors
  • warnings
  • notifications
  • informational (default level)
  • debugging

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

zekebash
Level 1
Level 1
In response to balaji.bandi

‎06-22-2021 08:32 AM

Thanks! 

Which one of those severity levels would not send "BPDU" or "access port activity" alerts?

 

Thanks, ~zK

0 Helpful

inderdeeps
Level 4
Level 4
In response to zekebash

‎06-22-2021 08:38 AM

@zekebash : you can put that only warnings and can be ignored !

balaji.bandi
Hall of Fame
Hall of Fame
In response to zekebash

‎06-22-2021 09:15 AM

Since you directing to syslog, you go higher Log level (not full debug) to all the information about the switch, you can filter in syslog what logs you want. (look at Longer solution rather small for now)

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

marce1000
Hall of Fame
Hall of Fame

‎06-22-2021 08:26 AM

 

 - By default , -2- denotes a critical error , you may mask them with a logging discriminator , for instance.

           (https://www.youtube.com/watch?v=Lbb7vlQoGt0)

 M.



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '
Configure Logging Discriminators on Cisco IOS [Step by Step Guide]
Configure Logging Discriminators on Cisco IOS [Step by Step Guide]
youtube.com/watch?v=Lbb7vlQoGt0
A discriminator is a filter that acts upon our Cisco IOS logs. We can suppress annoying logging messages from appearing in our terminal monitor, and the console in addition to the log buffer and even remote syslog servers. This video explains step by step how to create both a single parameter and
Customers Also Viewed These Support Documents
Top