Solved

Is it possible to use syslog traps to send url requests to a syslog server on a Cisco ASA?

Posted on 2008-06-12
2
629 Views
Last Modified: 2013-11-16
Does anyone know if it is possible to send URL requests that pass through a Cisco ASA Firewall to a syslog server?  I didn't want to get a content filter device, I'm just wanted to log.

I know that it is possible to send URL requests to a WEBSENSE or N2H2 server, but we don't have one of those, all we want is a log of requests and the source IP requesting.  

We do NOT have any special licensing on the ASA.  

0
Comment
Question by:jkeegan123
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 6

Accepted Solution

by:
clearacid earned 250 total points
ID: 21775308
I don't think this is possible (for the url piece).  You are able to track down via destination IP though.

Alternatively you could use NTOP (www.ntop.org) open source software to track netflows that would automatically do the reverse lookup for you into domain names.  You could also use something like dansguardian open source web content filter and put it in passive mode (if you really don't want content filtering) to track the URLs.
0
 
LVL 7

Expert Comment

by:naughton
ID: 21776342
websense isn't an expensive option, and it really does work well -
0

Featured Post

When ransomware hits your clients, what do you do?

MSPs: Endpoint security isn’t enough to prevent ransomware.
As the impact and severity of crypto ransomware attacks has grown, Webroot has fought back, not just by building a next-gen endpoint solution capable of preventing ransomware attacks but also by being a thought leader.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
ACL not working 11 65
Voice VLANs across Metro-E 4 52
CTIOS error on Windows 10 3 64
Proper Shutdown Cisco UCM on UCS C200 3 15
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
For months I had no idea how to 'discover' the IP address of the other end of a link (without asking someone who knows), and it drove me batty. Think about it. You can't use Cisco Discovery Protocol (CDP) because it's not implemented on the ASAs.…
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…

710 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question