Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
420
Views
0
Helpful
1
Replies

VRF-aware syslogging with 2921

johnnylingo
Level 5
Level 5

‎12-02-2013 11:39 PM - edited ‎03-04-2019 09:44 PM

I typically use a VRF for management of border routers, partially for secure access via SSH/SNMP, and partially so they can send syslog traps to the syslog server without setting up firewall rules and NATs.

This works fine with a 6500, but trying to use the same configuration on a 2921 I have no luck.  Connectivity seems to be there but I see no messages going through.  TACACs is also configured to use the VRF and works just fine, so the issue is specific to syslog. 

#show run | inc vrf MGMT

ip vrf MGMT

ip route vrf MGMT 0.0.0.0 0.0.0.0 10.100.1.1

logging source-interface Port-channel1.100 vrf MGMT

logging host 10.200.3.4 vrf MGMT

#ping vrf MGMT 10.200.30.4

Type escape sequence to abort.

Sending 5, 100-byte ICMP Echos to 10.200.30.4, timeout is 2 seconds:

!!!!!

Success rate is 100 percent (5/5), round-trip min/avg/max = 4/4/8 ms

IOS version is 15.1(4)M7

Labels:
0 Helpful
1 Reply 1

lmediavilla
Level 1
Level 1

‎12-09-2013 02:51 PM

is it port-channel 1.100 on vrf MGMT?

if not that's the problem

it it is.... the config is good so you should try using a loopback in vrf MGMT because probably a bug is causing that problem

kind regards

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card