Syslog & Backup in ACI

Step 1: Let’s use one of the leafs with ip 10.197.205.38 as remote server (Practically it would be server in your network)

Step 2: We are going to use directory /var/log/Test

Step 3: Now go to Admin Import/Export Export Policies Remote location

Create New Location Leaf1

Step 4 : Now go to Admin Import/Export Export Policies Configuration

Step 5 : Go to Leaf and verify.

leaf1# pwd

/var/log/Test

leaf1# ls

ce2_Leaf1-Export-Policy-2023-11-13T09-00-27.tar.gz

Sending Backup to Snapshot Folder on APIC controller.

Now go to directory “/data2/snapshots” on APIC

apic1# pwd

/data2/snapshots

apic1# ls

ce2_Backup-Snapshot-2023-11-13T09-12-08.tar.gz

Now go to AdminConfig Rollbacks Take snapshot with location as “APIC”

apic1# pwd

/data2/snapshots

apic1# ls -l

total 216

-rw-r--r-- 1 ifc admin 109929 Nov 13 09:12 ce2_Backup-Snapshot-2023-11-13T09-12-08.tar.gz

-rw-r--r-- 1 ifc admin 109771 Nov 13 09:15 ce2_defaultOneTime-2023-11-13T09-15-34.tar.gz

Syslog

Local file in APIC containing Syslog message is /var/log/external/messages

Syslog Configuration

Admin --> External Data Collectors --> Monitoring Destinations ---> Syslog --> Create Syslog Monitoring Destination Group

Syslog Message Policies

Fabric --> Fabric Policies --> Monitoring --> Common Policy --> Syslog Message Policies ----> we can delete or modify severity levels of policies.