Knowledge Search


×
 

Device May Become Unmanageable after Enabling TCP Syslog

  [KB14982] Show Article Properties


Summary:
Email alert, WebUI, SSL, Telnet, SSH, and Websense may not be possible after enabling Syslog via TCP
Symptoms:
Environment:
  • Syslog via TCP Transport
Symptoms:

Following management services may become unavailable
  • Email alert
  • SSH management
  • WebUI
  • SSL management
  • Telnet Management
  • Websense
Solution:
When syslog via TCP is enabled, and the amount of data being sent for logging to a syslog server is large, the TCP connection for syslog could consume large amounts of net-buffers and prevent management traffic from proceeding.  This can prevent the following services from functioning properly:
  • Email alerts
  • SSH management
  • WebUI
  • SSL management
  • Telnet management
  • Websense URL Filtering
The default, and recommended, setting for syslog is to use UDP transport.  If any of the above management services become unavailable, it is recommended to change syslog from TCP to UDP using the command:

unset syslog config "10.10.10.10" transport



Related Links: