Feature: Syslogs

Background: Logging feature enables logging status and status information collected by various modules and components in a CloudStack environment. SYSLOG is a standard protocol for logging. It has two components -  the SYSLOG auditing module, which runs on the management server (of CloudStack), and the SYSLOG server, which can also run on the management server or on a remote system. SYSLOG uses UDP for the transfer of data.When configured,  the management server starts sending all the log information to the SYSLOG server, and the SYSLOG server can filter the log entries before storing them in a log file. A SYSLOG server can receive log information from more than one client and CloudStack management server can also send log information to more than one SYSLOG server.

The log information that a SYSLOG server collects from a clients is stored in a log file in the form of messages. These messages typically contain the following information:

• The IP address of a client (CloudStack Management Servers) that generated the log message
• A time stamp
• The message type
• The predefined log levels (Critical, Error, Notice, Warning, Informational, Debug, Alert, and Emergency)
• The message information

Requirements: Similar to SNMP requirements https://cwiki.apache.org/confluence/display/CLOUDSTACK/SNMP+Alerts+feature

The core requirements are

-          Write to local – in syslog format

-          Send to remote sylog server

-          write message with appropriate Log level/priority