NSX Cloud supports syslog forwarding.

You can enable syslog forwarding for Distributed Firewall (DFW) packets on managed VMs. See Configure Remote Logging in the NSX-T Data Center Troubleshooting Guide for further details.

Do the following:

Procedure

  1. Log in to PCG using the jump host.
  2. Type nsxcli to open the NSX-T Data Center CLI.
  3. Type the following commands to enable DFW log forwarding: 
    nsx-public-cloud-gateway> set gw-controller vm-log-forwarding enabled 
nsx-public-cloud-gateway> set logging-server <server-IP-address> proto udp level info messageid FIREWALL-PKTLOG

    After this is set, NSX agent DFW packet logs are available under /var/log/syslog on PCG.

  4. To enable log forwarding per VM, enter the following command: 
    nsx-public-cloud-gateway> set gw-controller vm-log-forwarding enabled <vm-id>