ASA log viewer
Duane Toler
detoler at gmail.com
Mon Nov 21 16:01:54 UTC 2011
On Sun, Nov 20, 2011 at 17:33, Jimmy Hess <mysidia at gmail.com> wrote:
> Yes.
> logging permit-hostdown
>
> However, if you don't need to refuse connections when TCP syslog
> fails, then you don't need 100% of your syslog messages, you should
> use UDP syslog for performance.
>
> TCP just makes sure you will get all syslog messages between time A
> and time B or none of them.
> If there are WAN issues, there are many cases where one would prefer
> SOME syslog messages, with an understanding that the network
> bottleneck means messages are being lost, rather than few/no syslog
> messages to help debug the issue
>
> --
> -JH
>
Except you can't do syslog via TLS with UDP. :-/
--
Duane Toler
detoler at gmail.com
More information about the NANOG
mailing list