Single VSY within VSX environment wont send logs to dedicated log server

P_Williams — Wed, 10 Sep 2025 14:13:11 GMT

Hi,

We have a VSX environment running latest R81 hotfix. I have created a new virtual system ID 8 but I cant get it to communicate with the log server. The log server is in a separate network. There are a total of 8 virtual devices on this vsx, 5 systems/gateways, and 3 virtual switches. The other 4 virtual systems communicate with the log server fine.

When I do #cpstat fw -f log_connection on the vsenv with the issue I get

:8]# cpstat fw -f log_connection

Overall Status: 2
Overall Status Description: Security Gateway is unable to report logs to any log server
Local Logging Mode Description: Logs are written to log server
Local Logging Mode Status: 0
Local Logging Sending Rate: 0
Log Handling Rate: 0

Log Servers Connections
-----------------------------------------------------------
|IP |Status|Status Description |Sending Rate|
-----------------------------------------------------------
|172.25.116.31| 1|Log-Server Disconnected| 0|
-----------------------------------------------------------

And if I go to vsenv 0 and do #netstat -nap | grep 172.25.116.31

:0]# netstat -nap | grep 172.25.116.31
tcp 0 0 172.20.253.60:46836 172.25.116.31:257 TIME_WAIT -
tcp 0 0 172.20.253.60:34374 172.25.116.31:257 ESTABLISHED 5432/fwd
tcp 0 0 172.20.253.60:56275 172.25.116.31:257 ESTABLISHED 6098/fwd
tcp 0 0 172.20.253.60:50498 172.25.116.31:257 ESTABLISHED 6186/fwd
tcp 0 0 172.20.253.60:64858 172.25.116.31:257 ESTABLISHED 5922/fwd

The above must show the five virtual systems communicating (or trying to) with the log server with 4 Established and working and one Time_Wait and not working. But it shows end to end connectivity between the mgmt interface and the server.

I can configure the new virtual system to send logs to our SMS server 172.20.116.30 and that works

:8]# cpstat fw -f log_connection

Overall Status: 0
Overall Status Description: Security Gateway is reporting logs as defined
Local Logging Mode Description: Writing logs locally due to connectivity problems
Local Logging Mode Status: 2
Local Logging Sending Rate: 0
Log Handling Rate: 0

Log Servers Connections
--------------------------------------------------------
|IP |Status|Status Description |Sending Rate|
--------------------------------------------------------
|172.20.116.30| 0|Log-Server Connected| 0|
--------------------------------------------------------

And if I send some dummy ping from that vsenv 8 to the Internet it shows in the logs. See attachments.

8]# ping 14.15.16.17
PING 14.15.16.17 (14.15.16.17) 56(84) bytes of data.
^C
--- 14.15.16.17 ping statistics ---
150 packets transmitted, 0 received, 100% packet loss, time 149000ms

So I dont know where to look now. It may be something on the dedicated log server but I am unfamiliar with troubleshooting on that.

Re: Single VSY within VSX environment wont send logs to dedicated log server

emmap — Wed, 10 Sep 2025 22:55:05 GMT

Try doing an 'Install database' on the log server (or just all the mgmt servers). This can commonly resolve logging issues with new gateways.

Re: Single VSY within VSX environment wont send logs to dedicated log server

P_Williams — Thu, 11 Sep 2025 07:41:51 GMT

Thank you emmap, that has fixed it

0]# netstat -nap | grep 172.25.116.31
tcp 0 0 172.20.253.60:56329 172.25.116.31:257 ESTABLISHED 6027/fwd
tcp 0 0 172.20.253.60:34374 172.25.116.31:257 ESTABLISHED 5432/fwd
tcp 0 0 172.20.253.60:56275 172.25.116.31:257 ESTABLISHED 6098/fwd
tcp 0 0 172.20.253.60:50498 172.25.116.31:257 ESTABLISHED 6186/fwd
tcp 0 0 172.20.253.60:64858 172.25.116.31:257 ESTABLISHED 5922/fwd

topic Re: Single VSY within VSX environment wont send logs to dedicated log server in General Topics

Single VSY within VSX environment wont send logs to dedicated log server

Re: Single VSY within VSX environment wont send logs to dedicated log server

Re: Single VSY within VSX environment wont send logs to dedicated log server