These instructions assume:
- The date, time and time zone are correctly set on the router.
- You have access to the Mikrotik router via either the command line (Telnet or SSH) or the web management interface.
- You have the IP address of your Auvik collector.
Option 1 - command line
- Telnet or SSH into your router.
- Run the command
/system logging action
- And then run
- You must have a line called “remote” where you set the IP address of the syslog server; run the following command to edit the remote IP address to your Auvik collector IP address,
set [find name=remote] remote=AuvikCollectorIP
- Once that is done, issue a print command to confirm if the remote IP address was saved as desired, and confirm that remote-port is set to 514.
- Next, edit the syslog type information to send the messages to the remote configuration that was just configured. For that, run the command
/system loggingand then
- Use the numbers next to the topics listed by your Mikrotik to run the next command, according to the log severity you want to send to Auvik. In the example below, all log messages will be sent:
set action=remote 0,1,2,3
- Then run the print command to verify the action settings were changed to “remote”.
Option 2 - web interface
- Go to System, Logging, and then Actions.
- Select remote.
- In the remote address, add the Auvik collector IP address.
- Make sure the remote port is set to 514.
- Click OK to save the configuration.
- Then go to System, Logging, and Rules.
- Change the syslog message types that you would like to send to Auvik by selecting them and changing the associated action to remote. If you are sending all the logs to Auvik, it should look like this:
Once that’s done, your Mikrotik router should be sending the syslog information to the Auvik collector.
For more information: https://wiki.mikrotik.com/wiki/Manual:System/Log