NSX Advanced Networking – Syslog Setup and Configuration

Being able to view NSX Advanced Logging is critical in being able to ensure your NSX Edge Gateway is functioning as expected. With the Advanced Networking Service you can opt to log the following services:

  • NAT (Individual Rules)
  • Firewall (Individual Rules)
  • IPSec VPN (Service Wide)
  • Routing (Service Wide)
  • Load Balancer(Service Wide)

You can either configure an external Syslog Server or point the configuration at a Syslog Server that’s local to your Virtual Datacenter. We recommend deploying SexiLog (http://www.sexilog.fr/quickstart/) as a lightweight feature rich Syslogging appliance.

To enable NSX Advanced Networking Services service logging click on your Virtual Data Centre Service on the MyAccount page you are presented with an overview of your vDC resources.

Configuring Syslog Server to use for NSX Advanced Networking Services:

To enable NSX Advanced Networking Services service logging click on your Virtual Data Centre Service on the MyAccount page you are presented with an overview of your vDC resources.

syslog_1

This Tab lets you configure the Global Syslog Server(s) settings. To configure the Syslog Server to use with the NSX Advanced Networking Edge switch the Enabled Button to On, enter the Protocol (UDP is generally used for Syslogging on port 514) and the IP or IP addresses of the Syslog Servers.

syslog_2

Click on the Save Config Button to commit the configuration.

Configuring Logging Against NSX Advanced Networking Services:

For IPSec VPN, Routing and Load Balancing Logging can be enabled under the Selected Service Tab and then under the Logging Sub Tab as shown below.

syslog_3

For NAT and Firewall Rules Logging can be enabled against individual rules. This is a handy feature as these logs can be verbose and can be used for specific troubleshooting. To toggle logging on or off against NAT or Firewall Rules go to the Networks Tab and then under either the NAT or Firewall sub tab when adding or modifying a rule you can toggle the Enable Logging Button to the On or Off position.

syslog_4syslog_5