TMS zl Management and Configuration Guide ST.1.1.100430
2-75
Initial Setup in Routing Mode
Configure Event Logging
Configure Event Logging
The TMS zl Module logs events from the following sources:
■ Security systems (firewall, IPS, VPN, or high availability)
■ Open architecture system
■ Startup scripts (initialization or reboot)
■ Management systems (Web browser, CLI, or SNMP)
■ Common services (such as DHCP relay, DNS client, TFTP, SCP, RADIUS
client, LDAP client, or others)
These events can be logged locally or forwarded to an email account, syslog
server, or SNMP trap receiver:
■ Local logging—The module keeps its own internal logs, which can be
exported to a compressed .tar file (.tgz extension). (See “View and Export
Local Logs” on page 2-78.)
■ Email forwarding—The module can forward logged entries to as many
as three email accounts. (See “Configure Email Forwarding” on page
2-80.)
■ Syslog forwarding—The module can forward log entries to up to three
syslog servers. (See “Configure Syslog Forwarding” on page 2-81.)
■ SNMP traps—The module can forward SNMP traps to one or more SNMP
servers, such as HP ProCurve Manager Plus (PCM+). (See “Configure
SNMP Traps” on page 2-82.)
Log Settings
The TMS zl Module allows you to control:
■ Log severity—the type of messages that are logged for TMS zl Module
events
■ Log threshold monitor—a safeguard that prevents excessive logging
from negatively impacting the module’s performance
■ Log throttling—the number of duplicate messages that are logged for
the same event