Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
Bookmark
|
Subscribe
|
11333
Views
0
Helpful
2
Replies

Cisco Grok Patterns

ngriffin@bankozarks.com
Level 1
Level 1

‎10-17-2017 03:58 AM - edited ‎03-05-2019 09:18 AM

Working on a new syslog solution and have the need to parse cisco syslogs from routers, catalyst switches, nexus switches, etc. Has anyone spent some time developing grok patterns specific to this? I've found some good references for ASA but not much for traditional IOS and NXOS devices. Thanks

2 people had this problem
Labels:
0 Helpful
2 Replies 2

mostafa.hamouda8
Level 1
Level 1

‎09-10-2018 10:58 AM

Hello,

 

You can use the following rules and patterns from Github:

 

https://gist.github.com/justinjahn/85305bc7b7df9a6412baedce5f1a0ece

 

it has an amazing dictionary and good rules to match IOS/NX-OS messages. you will need to develop some rules if you are running some other platforms like ISE/ACS/Prime,...

0 Helpful

munroe
Level 1
Level 1

‎02-08-2023 07:22 AM

I was so excited to find this post, and then just as quickly my hopes were dashed as it seems like the linked repo is gone.  Anyone else know of any maintained grok patterns for ios-xe, nx-os, ios-xr?

0 Helpful
Customers Also Viewed These Support Documents
Top