Cisco ASA
Cisco ASA
Cisco ASA using Command Line Interface
Telnet to the ASA firewall and enter the enable mode
Type the following:
configure terminal
logging enable
logging timestamp
logging trap informational
logging device-id {context-name | hostname | ipaddress interface_name | string text}
logging host interface_name syslog_ip [udp/<syslog_port>]
interface_name
is the interface on the ASA Firewall whose logs need to be analyzed (for example: "inside" or "outside").
syslog_ip
is the IP address of the Log Collector to which the Firewall should send the Syslogs.
udp/<syslog_port>
indicates that logs will be sent using the UDP protocol, to the configured syslog port on the syslog server. If left blank, logs will be sent to the default UDP port 514. Check Appendix A for default port list.
hostname
firewall's host name (defined with the hostname configuration command)
ipaddress interface_name
the IP address of a specific firewall interface named interface_name (for example: "inside" or "outside")
string text
an arbitrary text string (up to 16 characters)
context-name
in PIX 7.x or FWSM 2.x operating in multiple-context mode, the name of the firewall context can also be sent.
Last updated