Solved

Enabling syslog informational logging without seeing VPN teardowns

Posted on 2009-04-01
3
341 Views
Last Modified: 2012-05-06
Is there a way to setup syslogging on a pix or asa, so that my syslog server doesn't get flooded with VPN information?  Right now it is set to emergencies. Because when I use the informational type of logging, I get all of the VPN info.

I just want to see log ins, log outs, user changes etc etc.

Thanks in advance
0
Comment
Question by:dissolved
  • 2
3 Comments
 
LVL 10

Accepted Solution

by:
stsonline earned 500 total points
ID: 24052629
The easiest way would be to configure the firewall to exclude certain messages by ID - check out this link on Cisco's web site:

http://www.cisco.com/en/US/docs/security/asa/asa80/system/message/logmsgs.html

0
 

Author Closing Comment

by:dissolved
ID: 31568638
can you give me an example command?
0
 
LVL 10

Expert Comment

by:stsonline
ID: 24188409
Sure... you enter the message ID you do NOT want to record one line at a time prefixed by the word 'no'. For example, if you don't care about a VPN client with no split-tunneling enabled and don't want to know when a Phase 1 retrans or keep-alive is received, you'd get into configuration mode and create four entries, one each for message ID 611301, 611302, 702204, and 715075:

no logging message 611301
no logging message 611302
no logging message 702204
no logging message 715075

0

Featured Post

Watch Anatomy of a Wi-Fi Hack On-Demand

In less than a weekend, anyone with Internet access and some free time can become a Wi-Fi MitM to wreak havoc on your network. View our Wi-Fi Expert in an on-demand episode of our Secure Wi-Fi mini-series as he explores the motives, execution, and anatomy of a Wi-Fi hack.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Optimal Xbox 360 connectivity requires "OPEN NAT". If you use Juniper Netscreen or SSG firewall products in a home setting, the following steps will allow you get rid of the dreaded warning screen below and achieve the best online gaming environment…
I found an issue or “bug” in the SonicOS platform (the firmware controlling SonicWALL security appliances) that has to do with renaming Default Service Objects, which then causes a portion of the system to become uncontrollable and unstable. BACK…
In an interesting question (https://www.experts-exchange.com/questions/29008360/) here at Experts Exchange, a member asked how to split a single image into multiple images. The primary usage for this is to place many photographs on a flatbed scanner…
I've attached the XLSM Excel spreadsheet I used in the video and also text files containing the macros used below. https://filedb.experts-exchange.com/incoming/2017/03_w12/1151775/Permutations.txt https://filedb.experts-exchange.com/incoming/201…

680 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question