21 Nov
2011
21 Nov
'11
11:01 a.m.
On Sun, Nov 20, 2011 at 17:33, Jimmy Hess <mysidia@gmail.com> wrote:
Yes. logging permit-hostdown
However, if you don't need to refuse connections when TCP syslog fails, then you don't need 100% of your syslog messages, you should use UDP syslog for performance.
TCP just makes sure you will get all syslog messages between time A and time B or none of them. If there are WAN issues, there are many cases where one would prefer SOME syslog messages, with an understanding that the network bottleneck means messages are being lost, rather than few/no syslog messages to help debug the issue
-- -JH
Except you can't do syslog via TLS with UDP. :-/ -- Duane Toler detoler@gmail.com