Solved

cisco asa5510 question about reports/logging

Posted on 2006-11-29
11
297 Views
Last Modified: 2013-11-16
Is there away or other tool to see where computers are going out on the internet and for how long they browse?
0
Comment
Question by:iceman19330
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 7
  • 4
11 Comments
 
LVL 79

Expert Comment

by:lrmoore
ID: 18040071
Not directly with the ASA, but you can either set up a proxy, force all users to go through the proxy and lock all except the proxy from going out the ASA, then use the reporting features of your chosen proxy. Microsoft ISA is pretty good for this...

Setup NTOP on a PC connected to a hub that connects the inside of the ASA to the internal LAN switch (or on a SPAN port of the switch)
http://www.NTOP.org

Pop in an in-line filter appliance like iPrism http://www.stbernard.com/iPrism
0
 

Author Comment

by:iceman19330
ID: 18040154
Okay is there a tool reading the logs and generating reports that way?
0
 
LVL 79

Expert Comment

by:lrmoore
ID: 18040454
Yes.
Enable logging to an external host, and use Sawmill automated syslog analyzer
http://www.sawmill.net/formats/kiwi_iso.html

Or FireGen
http://www.eventid.net/firegen/
0
Creating Instructional Tutorials  

For Any Use & On Any Platform

Contextual Guidance at the moment of need helps your employees/users adopt software o& achieve even the most complex tasks instantly. Boost knowledge retention, software adoption & employee engagement with easy solution.

 

Author Comment

by:iceman19330
ID: 18040485
How do I enable the logging to an external host?
0
 

Author Comment

by:iceman19330
ID: 18040502
I think I found it.
0
 
LVL 79

Accepted Solution

by:
lrmoore earned 500 total points
ID: 18040516
logging on
logging trap informational
logging host a.b.c.d inside

<8-}

0
 

Author Comment

by:iceman19330
ID: 18040535
Nevermind that was something else.
0
 

Author Comment

by:iceman19330
ID: 18040605
Result of the command: "logging host 192.168.234.214 inside"

logging host 192.168.234.214 inside
                  ^
ERROR: % Invalid input detected at '^' marker.
0
 

Author Comment

by:iceman19330
ID: 18040628
Here is a funny thing I ran the commands, but then when it failed I exited the screen and went around.  At some point it stopped accepting connections, I went back and changed a small setting and applied and it started working again, this has happened before where I have set something via CLI and had to check on syntax or something like that and gotten out and the system has stopped accepting connections?  I know its not part of the question but any thoughts?
0
 
LVL 79

Expert Comment

by:lrmoore
ID: 18043020
My bad..
syntax =
logging host inside 192.168.234.214

Been a long day.....
0
 

Author Comment

by:iceman19330
ID: 18055349
No problem, been a long week for me.  TGIF.
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In this article, I am going to show you how to simulate a multi-site Lab environment on a single Hyper-V host. I use this method successfully in my own lab to simulate three fully routed global AD Sites on a Windows 10 Hyper-V host.
I had an issue with InstallShield not being able to use Computer Browser service on Windows Server 2012. Here is the solution I found.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

734 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question