On Sun, Nov 20, 2011 at 17:33, Jimmy Hess <[email protected]> wrote: > Yes. > logging permit-hostdown > > However, if you don't need to refuse connections when TCP syslog > fails, then you don't need 100% of your syslog messages, you should > use UDP syslog for performance. > > TCP just makes sure you will get all syslog messages between time A > and time B or none of them. > If there are WAN issues, there are many cases where one would prefer > SOME syslog messages, with an understanding that the network > bottleneck means messages are being lost, rather than few/no syslog > messages to help debug the issue > > -- > -JH >
Except you can't do syslog via TLS with UDP. :-/ -- Duane Toler [email protected]
