We have the following commands on our PIX 506e FW
logging trap informational
logging host inside 192.168.1.7
ip audit info action alarm
ip audit attack action alarm
In order to check for Intrusion Detection, can anyone tell me what I should be looking for on the Kiwi Syslog server?