Logmanager documentation
Toggle Dark/Light/Auto mode Toggle Dark/Light/Auto mode Toggle Dark/Light/Auto mode Back to homepage
  1. Logmanager documentation
  2. /
  3. Log source devices configuration
  4. /
  5. Infoblox

Infoblox

Configuration on the Logmanager

To successfully receive and process logs, you need to set up the log classification correctly. The easiest way to do this is to add the IP addresses of the device (or, alternatively, the subnet of your choice) to the appropriate IP prefix list.

Some devices in Logmanager do not have their own IP Prefix list and you need to create one or use a classifier - Classifiers. For this device the IP prefix list does not exist, so follow the procedure below.

  1. Log in to the web administration Logmanager.

  2. Go to Parser/IP prefix lists:

    • Click on the icon with the “+” symbol and create a new IP prefix list
    • Select name as the Infoblox
    • Add the IP addresses of your Infoblox NIOS devices (Alternatively, you can use the subnet of your choice).
    New IP prefix list

    New IP prefix list

  3. Go to Parser/Classifiers

    • In case you are using your own unique classifier, modify it and add the following condition:
    Adding a condition to the classifier

    Adding a condition to the classifier

  4. In case you don’t use your own unique classifier, create one:

    • Go to Parser/Classifiers
    • Click on the “plus “ symbol on the right and create a new Classifier
    • Name it arbitrarily, for example “Infoblox” and insert the following condition:
    Adding a condition to the classifier

    Adding a condition to the classifier

    Classifiers are sorted alphabetically, make sure the classifier you create is not the last classifier.
    IP prefix lists are used in the default classification template vendor-Default-classification - more Classifier Template
    This is standard for most Logmanager installations. If you are unsure about anything, please contact your certified partner or help@logmanager.com.

Configuring Infoblox NIOS using GUI

  1. Login to Infoblox NIOS web administration. You need a username with admin privilege.

    Login to Infoblox NIOS

    Login to Infoblox NIOS

  2. From the Grid tab, select the Grid Manager tab‣ Members tab‣ Grid Properties‣ Edit from the Toolbar.

    Grid Properties

    Grid Properties

  3. In the Grid Properties editor, select the Monitoring tab, and then do the following:

    • Leave Syslog Size (MB) unchanged (300).
    • Select the Log to External Syslog Servers.
    • Now click on the "+/PLUS” icon.
    Grid Properties

    Grid Properties

  4. Now complete the following:

    • Address: enter the Logmanager IP address.
    • Transport: select TCP.
    • Interface: select your prefered interface (probably MGMT).
    • Node ID: select your prefered Node ID (probably MGMT).
    • Source: select Any.
    • Severity: select Debug.
    • Port: enter Logmanager port 514.
    • Logging Category: choose Send all
    Syslog properties

    Syslog properties

    Syslog properties contd

    Syslog properties contd

  5. Click Add.

  6. Optionally, click the Test button to test the connection to the syslog server that you configured.

  7. Now click Save and Close to save your configuration.