Hello,
Here is an example that should help you. I have a logging discriminator to
get only security related messages (SECMGS as i called it) that have the
facility SEC and FW sent to one syslog server, while everything (NO_SEC as i
called it) else is sent to another server.
After the "drop" or "include" you just put in a regular expression, in my
case I'm looking for SEC or FW facility.
logging discriminator NO_SEC facility drops (SEC|FW)
logging discriminator SECMSG facility includes (SEC|FW)
logging host 1.2.3.4 discriminator SECMSG
logging host 6.7.8.9 discriminator NO_SEC
Hope that helps and here is a like that talks a little bit about it.
http://www.cisco.com/en/US/docs/ios/12_4t/12_4t11/htnmsylg.html#wp1056391
Tom K.
On Wed, Jun 2, 2010 at 11:26 AM, Muzammil Malick <malickmuz_at_gmail.com>wrote:
> Hi
>
> Does anybody have any links to documentation regarding the syslog
> discriminator.
> I have read the config guide section but it is not very clear and I wanted
> to see it being applied in an example.
>
> Thanks
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
Blogs and organic groups at http://www.ccie.net
Received on Wed Jun 02 2010 - 11:41:52 ART
This archive was generated by hypermail 2.2.0 : Sun Aug 01 2010 - 09:11:36 ART