Solved

ASA5520 syslog setup

Posted on 2009-05-06
1
1,835 Views
Last Modified: 2013-11-16
I am trying to collect port 25 smtp traffic traversing my inside interface. I have built the following access list and applied to the inside interface. I can see the ACL taking hits, but I see nothing in my syslogs.

access-list insideTOoutside extended permit tcp 10.1.0.0 255.255.0.0 any eq smtp log notifications
access-list insideTOoutside extended permit ip any any

access-group insideTOoutside in interface inside

logging enable
logging trap notifications
logging host inside 10.1.200.32


0
Comment
Question by:dtadmin
1 Comment
 
LVL 15

Accepted Solution

by:
Voltz-dk earned 500 total points
Comment Utility
It seems to be setup correctly, and it should give you syslogs with code 106100.  Like this:

%ASA-5-106100: access-list inside_access_in permitted tcp inside/192.168.0.10(1328) -> outside/130.225.244.84(80) hit-cnt 1 first hit [0x386bad81, 0x0]
---
Do you get other syslogs?  Have you tried to send them to terminal or buffer?
0

Featured Post

How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

Join & Write a Comment

There are many useful and sometimes not well documented or forgotten IOS or ASA/PIX commands. See IPE article here , there was also one on PacketU and on Cisco Tips & Tricks. Below are my favorites. I give also a few most often used for Cisco IPS an…
Do you have a windows based Checkpoint SmartCenter for centralized Checkpoint management?  Have you ever backed up the firewall policy residing on the SmartCenter?  If you have then you know the hassles of connecting to the server, doing an upgrade_…
It is a freely distributed piece of software for such tasks as photo retouching, image composition and image authoring. It works on many operating systems, in many languages.
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

9 Experts available now in Live!

Get 1:1 Help Now