Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3194
Views
0
Helpful
2
Replies

Regular expressions in EEM - Syslog pattern

Go to solution
Links3000
Level 1
Level 1

‎01-13-2016 12:05 PM

I'd like to know how I can match a syslog pattern of BGP neighbor down, without taking into account the actual IP address of the neighbor. The normal syslog message is as follows:

%BGP-5-ADJCHANGE: neighbor 1.1.1.1 vpn vrf outside Down

What I was hoping is I can use a regular expression character to match the syslog pattern as follows "%BGP-5-ADJCHANGE: neighbor & Down", but I have not read anywhere that this is possible. Not sure if this would require a separate syslog pattern, one for "%BGP-5-ADJCHANGE: neighbor" and one for "Down", or if there is a better way to go about this? Can someone assist?

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Dan Frey
Cisco Employee
Cisco Employee

‎01-14-2016 06:15 AM

This regexp will work if you want to match on any neighbor  IP.   

BGP-5-ADJCHANGE: neighbor [0-9]+\.[0-9]+\.[0-9]+\.[0-9]+\s+[A-Za-z\s]+ Down

View solution in original post

0 Helpful
2 Replies 2

Go to solution
Dan Frey
Cisco Employee
Cisco Employee

‎01-14-2016 06:15 AM

This regexp will work if you want to match on any neighbor  IP.   

BGP-5-ADJCHANGE: neighbor [0-9]+\.[0-9]+\.[0-9]+\.[0-9]+\s+[A-Za-z\s]+ Down

0 Helpful

Go to solution
Links3000
Level 1
Level 1
In response to Dan Frey

‎01-14-2016 11:08 AM

Thank you!

0 Helpful
Customers Also Viewed These Support Documents