Cisco ASA
Cisco ASA
Cisco ASA using Command Line Interface
Telnet to the ASA firewall and enter the enable mode
Type the following:
configure terminal
logging enable
logging timestamp
logging trap informational
logging device-id {context-name | hostname | ipaddress interface_name | string text}
logging host interface_name syslog_ip [udp/<syslog_port>]
interface_name | is the interface on the ASA Firewall whose logs need to be analyzed (for example: "inside" or "outside"). |
syslog_ip | is the IP address of the Log Collector to which the Firewall should send the Syslogs. |
udp/<syslog_port> | indicates that logs will be sent using the UDP protocol, to the configured syslog port on the syslog server. If left blank, logs will be sent to the default UDP port 514. Check Appendix A for default port list. |
hostname | firewall's host name (defined with the hostname configuration command) |
ipaddress interface_name | the IP address of a specific firewall interface named interface_name (for example: "inside" or "outside") |
string text | an arbitrary text string (up to 16 characters) |
context-name | in PIX 7.x or FWSM 2.x operating in multiple-context mode, the name of the firewall context can also be sent. |
Last updated