Link to home
Create AccountLog in
Avatar of Suncore
Suncore

asked on

PAT Rule Alerting / IOS 12.4(15)T10

Hello Networking Experts,

Cisco 877W-G-A-M-K9 Router
(C870-ADVSECURITYK9-M), Version 12.4(15)T10
flash:c870-advsecurityk9-mz.124-15.T10.bin

Is it possible to be alerted (via email /  written to log buffer) when port address translation targeting a certain internal IP address is performed ?

I have an internal service running on port 8090, available via the config below to the WWW on port 8091.

What I would like to do is setup some form of alerting so I know about when the service is accessed from outside of the local LAN.  i.e. when 'p nat inside source static tcp 10.10.10.10 8090 interface Dialer0 8081' is triggered, send an alert of some sort.

Is this possible?

Thanks in advance.

ip nat inside source static tcp 10.10.10.10 8090 interface Dialer0 8081

Open in new window

ASKER CERTIFIED SOLUTION
Avatar of Istvan Kalmar
Istvan Kalmar
Flag of Hungary image

Link to home
membership
Create an account to see this answer
Signing up is free. No credit card required.
Create Account
Avatar of Suncore
Suncore

ASKER

ikalmar - Thanks for your reply, I think this might be the solution I am looking for.

I dont have a syslog server though, is it possible to log to the internal buffer instead ?

How would I do this ?
yes, it is possible but it is restricted length!

you need to enable internal buffer:
logging buffered deb
logging buffered 8192

you able to view it:

sh logg
Avatar of Suncore

ASKER

PERFECT solution to my issue.  Thankyou.