Cisco ASA

I am using Cisco ASA 5510 connecting to internet. This is the firewall used for users who access internet . I am using syslog feature for the logs. I would like to know what is the recommende logging facility I should configure in the firewall to capture the reqquired logs.
What is the recommended logging facility to be configured. The logs should include the system related logs & the event logs.
LVL 1
SrikantRajeevAsked:
Who is Participating?
 
wiscomConnect With a Mentor Commented:
Hi,
I will recomand you to start with level 6 - Informational -. Investigate the messages you want. Syslog server put by every message the level. If you want only specific info you can finetune to this level.

Good Luck !
A/
0
 
stsonlineCommented:
The default logging facility is Local4. To get general-level events, log level informational - if that doesn't give you what you want increase to debug.
0
 
lrmooreCommented:
If you just want system level events, use level 4 or 5
monitor you logs and see if you are getting too much information or not enough.
If too much, then drop to level 3 or 4
0
 
SrikantRajeevAuthor Commented:
Thanks
0
All Courses

From novice to tech pro — start learning today.