myfootsmells
asked on
how to monitor incoming traffic through a certain port cisco pix 506e
is there a way to monitor what ports ppl from the outside world are trying to access from the cisco pix 506e?
michael
michael
ASKER
mmm -- i already have my syslog server setup, do i need to tell the pix which syslog server to use with the above commands or will it just take the current ones?
what does sho do?
what does sho do?
logging on
logging host
Use these commands and give the ip address in the second command to enable logging onto a syslog client. Get Kiwi Syslog (free) if you don't have one.
Cheers,
Rajesh
logging host
Use these commands and give the ip address in the second command to enable logging onto a syslog client. Get Kiwi Syslog (free) if you don't have one.
Cheers,
Rajesh
sho = shortcut for show
ASKER
the ip audit interface outside is an invalid command. i tried ip audit interface outbound which is the name of my interface still no good.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
If you want to be flooded with information, just start logging everything that gets denied by turning on ip audit.
ip audit attack action alarm <== send syslog message
ip audit info action alarm
ip audit interface outside
sho ip audit interface outside