[c-nsp] Cisco boxes and Syslog-ng
A.Rahman Isnaini R.suTan
risnaini at indo.net.id
Thu Sep 8 23:22:43 EDT 2005
Scott Altman wrote:
> Per Rodney's comment, using syslog is not the way to do traffic
> monitoring, it's a high-level, not quite granular method. Use NetFlow
> or if you need detail, stick a box with Ethereal on it between the two
> networks.
>
Yah, agree !.
Now I'm using Ourmon.
Old version, only the traffic on the same VLAN.
Much better the latest version all traffic on the trunk.
Thanks.
> - Scott
>
> On 9/8/05, A.Rahman Isnaini R.suTan <risnaini at indo.net.id> wrote:
>
>>Ariel,
>>
>>Ariel Biener wrote:
>>
>>>On Thursday 08 September 2005 06:50, A.Rahman Isnaini R.suTan wrote:
>>>
>>>
>>>>I noted that Cisco couldn't log the traffic with thousands hits persecond.
>>>>They shown on the ACL matches but not shown either on "show logging" or
>>>>in the log file of syslog-ng server.
--
:: Rahman Isnaini R suTan
:: Network Operation Engineer
:: PT IndoInternet
More information about the cisco-nsp
mailing list