Platform - Operating System related log messages like device errors, disk, and other kernel logs.
Trace - Specific to tcpdump messages captured on the system, including traceSBC application traces.
Security - Includes application log-in, logouts, and Operating System users. These logs also includes with specific application detected anomalies/threats.
Protocol - Captures HTTP/SIP and other supported protocols on the system.
Registrations - Specific to SBC application registered messages.
Audit - Recorded events related to configuration changes and audited monitoring events.
SIP Trace - Captures live SIP messages processed by Avaya SBC.
You cannot enable SIP Trace and GDPR configurations simultaneously.
Facility
Specifies the log collection facility for the class of log.
The options are:
LOG_LOCAL0
LOG_LOCAL1
LOG_LOCAL2
LOG_LOCAL3
LOG_LOCAL4
LOG_LOCAL5
LOG_LOCAL6
LOG_LOCAL7
LOG_DAEMON
The EMS server reserves log collection facilities LOG_LOCAL5 and LOG_LOCAL6 for audit logs.
All
Selects all information levels for a log class.
If you select the All check box in the table header, the EMS server selects all information levels for all log classes.
Info
Selects the Info information level for a log class.
If you select the Info check box in the table header, the EMS server selects the Info level for all log classes.
Notice
Selects the Notice information level for a log class.
If you select the Notice check box in the table header, the EMS server selects the Notice information level for all log classes.
Warning
Selects the Warning information level for a log class.
If you select the Warning check box in the table header, the EMS server selects the Warning information level for all log classes.
Error
Selects the Error information level for a log class.
If you select the Error check box in the table header, the EMS server selects the Error information level for all log classes.
Critical
Selects the Critical information level for a log class.
If you select the Critical check box in the table header, the EMS server selects the Critical information level for all log classes.
Alert
Selects the Alert information level for a log class.
If you select the Alert check box in the table header, the EMS server selects the Alert information level for all log classes.
Emergency
Selects the Emergency information level for a log class.
If you select the Emergency check box in the table header, the EMS server selects the Emergency information level for all log classes.
Collectors tab
Name
Description
Facility
The log collection facility.
The options are:
LOG_LOCAL0
LOG_LOCAL1
LOG_LOCAL2
LOG_LOCAL3
LOG_LOCAL4
LOG_LOCAL5
LOG_LOCAL6
LOG_LOCAL7
LOG_DAEMON
The EMS server reserves log collection facilities LOG_LOCAL5 and LOG_LOCAL6 for audit logs.
Destination location
The path where the EMS server stores the log file for the log collection facility.
Add Collector Profile
Name
Description
Facility
The log collection facility.
The options are:
LOG_LOCAL0
LOG_LOCAL1
LOG_LOCAL2
LOG_LOCAL3
LOG_LOCAL4
LOG_LOCAL5
LOG_LOCAL6
LOG_LOCAL7
LOG_DAEMON
The EMS server reserves log collection facilities LOG_LOCAL5 and LOG_LOCAL6 for audit logs.
Collector Type
The type of log collector.
The options are:
File
Remote Syslog
Protocol
The protocol used to save the logs.
The options are:
TCP
UDP
TLS
The Protocol field is available only when you select the Remote Syslog collector type.
Note:
TLS protocol is not applicable only for EMS.
TLS Profile
The TLS client profile to use when connecting to the remote Syslog server
Address
The address used by remote syslog to save the logs.
The options are:
EMS
Ip:port
The Address field is available only when you select the Remote Syslog collector type.
