Submit a ticketCall us

Get a crash course on Network Monitoring delivered right to your inbox
This free 7-day email course provides a primer to the philosophy, theory, and fundamental concepts involved in IT monitoring. Lessons will explain not only how to perform various monitoring tasks, but why and when you should use them. Sign up now.

Home > Success Center > Orion Platform > Orion Documentation > Orion Platform Administrator Guide > Monitor Syslog messages

Monitor Syslog messages

Table of contents
Created by Caroline Juszczak, last modified by Magdalena.Markova on Nov 30, 2016

Views: 89 Votes: 1 Revisions: 6

Syslog messages are received by the SolarWinds Syslog Service, which listens for incoming messages on UDP port 514. Received messages are decoded and stored in the SolarWinds Orion database. The SolarWinds Syslog Service can handle large numbers of simultaneously incoming Syslog messages from all your monitored devices.

A SolarWinds installation can process approximately 1 million Syslog messages per hour, which is about 300 Syslog messages per second. You can process more by increasing your hardware requirements over the minimum requirements.

You can view Syslog messages in the Orion Web Console or in the Syslog Viewer application.

Before you begin

  • Confirm that your network devices are configured to send Syslog messages to the SolarWinds Orion server IP address. For proper configuration of network devices, refer to the documentation supplied by the device vendor.
  • Ensure UDP port 514 is open for IPv4 and IPv6.
  • The message must be formatted according to the Request for Comments (RFC) requirements.
  • If a long message is split into smaller parts, these parts should be formatted to not be skipped.

    SolarWinds recommends setting up Enable RFC Relay in the service to true to allow the service to restructure the message by adding the default facility, severity, or date.

Learn more:
Last modified
01:48, 30 Nov 2016

Tags

Classifications

Public