BGP System Logs
System Log Searches
System and application logs are crucial for diagnosing issues with BGP sessions, route advertisements, path selection, and missing routes. Below are the log locations and commands for searching through these logs for BGP-related issues across different vendors, along with suggested keywords for effective log analysis.
Palo Alto
| Log Location | Search Command | Keywords |
|---|
/var/log/pan.log | grep -i "bgp|route|peer" /var/log/pan.log | BGP, route, peer, flap, dampening |
Cisco ASA
| Log Location | Search Command | Keywords |
|---|
| Syslog server / CLI | show logging | include "BGP|route|peer" | BGP, route, peer, flap, dampening |
Fortinet
| Log Location | Search Command | Keywords |
|---|
GUI / /var/log on CLI | diag log eventlist | grep -i "bgp|route|peer" | BGP, route, peer, flap, dampening |
Check Point Gaia
| Log Location | Search Command | Keywords |
|---|
/var/log/messages | grep -i "bgp|route|peer" /var/log/messages | BGP, route, peer, flap, dampening |
Debian (with Quagga or FRR)
| Log Location | Search Command | Keywords |
|---|
Quagga: /var/log/quagga/bgpd.log | grep -i "bgp|route|peer" /var/log/quagga/bgpd.log | BGP, route, peer, flap, dampening |
FRR: /var/log/frr/frr.log | grep -i "bgp|route|peer" /var/log/frr/frr.log | BGP, route, peer, flap, dampening |
Suggested Keywords for Log Searches include BGP, route, peer, flap, dampening for a focused investigation on potential issues related to BGP operations and configurations.