Solved

Cisco ASA

Posted on 2009-07-08
4
744 Views
Last Modified: 2013-11-16
I am using Cisco ASA 5510 connecting to internet. This is the firewall used for users who access internet . I am using syslog feature for the logs. I would like to know what is the recommende logging facility I should configure in the firewall to capture the reqquired logs.
What is the recommended logging facility to be configured. The logs should include the system related logs & the event logs.
0
Comment
Question by:SrikantRajeev
4 Comments
 
LVL 10

Expert Comment

by:stsonline
ID: 24805877
The default logging facility is Local4. To get general-level events, log level informational - if that doesn't give you what you want increase to debug.
0
 
LVL 79

Expert Comment

by:lrmoore
ID: 24810191
If you just want system level events, use level 4 or 5
monitor you logs and see if you are getting too much information or not enough.
If too much, then drop to level 3 or 4
0
 
LVL 8

Accepted Solution

by:
wiscom earned 500 total points
ID: 24811297
Hi,
I will recomand you to start with level 6 - Informational -. Investigate the messages you want. Syslog server put by every message the level. If you want only specific info you can finetune to this level.

Good Luck !
A/
0
 
LVL 1

Author Closing Comment

by:SrikantRajeev
ID: 31600991
Thanks
0

Featured Post

Do You Know the 4 Main Threat Actor Types?

Do you know the main threat actor types? Most attackers fall into one of four categories, each with their own favored tactics, techniques, and procedures.

Join & Write a Comment

Suggested Solutions

For those of you actively in the Malware fightling business, we now have available an amazing new tool in the malware wars (first recommended to me by rpggamergirl (http://www.experts-exchange.com/M_3598771.html), the Zone Advisor for the Virus and …
When posting a question about a Cisco ASA, Cisco Router or Cisco Switch, it can aid diagnosis if a suitably sanitised copy of the config is provided. It is much better to leave as much of the configuration as original as possible, as it could be tha…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
This video demonstrates how to create an example email signature rule for a department in a company using CodeTwo Exchange Rules. The signature will be inserted beneath users' latest emails in conversations and will be displayed in users' Sent Items…

757 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now