[c-nsp] PIX logging
Michael K. Smith - Adhost
mksmith at adhost.com
Tue Jan 13 14:04:39 EST 2009
Hello Chris:
> -----Original Message-----
> From: cisco-nsp-bounces at puck.nether.net [mailto:cisco-nsp-
> bounces at puck.nether.net] On Behalf Of ChrisSerafin
> Sent: Tuesday, January 13, 2009 10:35 AM
> To: cisco-nsp at puck.nether.net
> Subject: [c-nsp] PIX logging
>
> I'm trying to setup a cluster pf PIX 515 to send all traffic logs to an
> external syslog server for event correlation. I'm not seeing any traffic
> hit the syslog server tho....
>
> Here is my config:
> logging timestamp
> logging console debugging
> logging monitor debugging
> logging buffered warnings
> logging trap informational
> logging history informational
> logging facility 6
> logging host inside 10.0.8.100 ! located on the inside interface
>
>
> Does anyone else log all traffic to an external source and see what's
> wrong with my config?
>
There was a another email about 'logging on' and you should also be aware that the PIX uses different facility numbering than you would anticipate on a unix server. If you are intending to go to Local6 you should use 'logging facility 22'
For reference, see http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_tech_note09186a0080094030.shtml#logfacility
Regards,
Mike
-------------- next part --------------
A non-text attachment was scrubbed...
Name: PGP.sig
Type: application/pgp-signature
Size: 474 bytes
Desc: not available
URL: <https://puck.nether.net/pipermail/cisco-nsp/attachments/20090113/8470a355/attachment.bin>
More information about the cisco-nsp
mailing list