To configure Syslog with a non-default port you need to take these steps:
Syslogserver:172.10.1.10
Port: 1530
1 – Login to ESXi by SSH
2 – vi /etc/vmware/firewall/syslogPort1530.xml
3 – Copy this text and save
<!– /etc/vmware/firewall/syslogPort1530.xml –>
<!– remote syslog configuration –>
<ConfigRoot>
<service>
<id>syslogPort1530</id>
<rule id=’0000′>
<direction>outbound</direction>
<protocol>udp</protocol>
<porttype>dst</porttype>
<port>1530</port>
</rule>
<rule id=’0001′>
<direction>outbound</direction>
<protocol>tcp</protocol>
<porttype>dst</porttype>
<port>1530</port>
</rule>
<enabled>false</enabled>
<required>false</required>
</service>
</ConfigRoot>
4 – esxcli network firewall unload
5 – esxcli network firewall load
6 – esxcli network firewall ruleset set -e true -r syslogPort1530
7 – esxcli network firewall ruleset set -e false -r Syslog
8 – esxcli system syslog config set –loghost udp:// 172.10.1.10:1530
9 – esxcli system syslog reload
10 -esxcli system syslog mark -s “test log”