Back to glossary

Syslog

A standard for message logging that allows a device to send event notifications to a central server.

Categorynetwork

Overview

Syslog is used by network devices, servers, and applications to record events such as login attempts, configuration changes, and hardware failures. These messages can be stored locally or sent to a central Syslog Server for aggregation and analysis.

Message Components

  • Facility: The type of program that generated the message (e.g., kernel, mail, local7).
  • Severity: The importance of the message (ranging from 0-Emergency to 7-Debug).
  • Timestamp: When the event occurred.
  • Hostname: The device that generated the message.
  • Message Body: A description of the event.

Use Case

Centralizing logs from hundreds of network devices to identify the root cause of a widespread network issue.

Related Terms

Network MonitoringSNMP