[c-nsp] VPN Auditing

Paul Stewart paul at paulstewart.org
Mon Aug 31 09:36:00 EDT 2009


Thanks - didn't know about that ;)

I think we'll end up moving to Radius anyways - just makes better sense ....

Take care,

Paul


-----Original Message-----
From: John Kougoulos [mailto:koug at intracom.gr] 
Sent: August-31-09 9:30 AM
To: Paul Stewart
Cc: cisco-nsp at puck.nether.net
Subject: Re: [c-nsp] VPN Auditing

have you enabled "crypto logging session" ?

On Thu, 27 Aug 2009, Paul Stewart wrote:

> Hi folks...
>
>
>
> We have a site that runs a Cisco 2800 with a IOS VPN server.  Users
connect
> via their Cisco VPN clients to gain access to an internal network there...
>
>
>
> I would like to start auditing it a bit more and have a way to tell who
> logged in and when.  Is this difficult?  I've searched around and found
more
> complex things that can be accomplished but currently the security policy
> only permits user authentication auditing.  The users are currently
> authenticated off a local configuration - would moving them to Radius make
> more sense or can I do this with builtin usernames?
>
>
>
> Best regards,
>
>
>
> Paul
>
>
>
>
>
>
>
> _______________________________________________
> cisco-nsp mailing list  cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
>



More information about the cisco-nsp mailing list