Solved

ASA 5505 VPN Peer Logging

Posted on 2011-02-24
3
1,194 Views
Last Modified: 2012-05-11
I need to know how to setup logging for specifically VPN Peers on a Cisco ASA 5505. I would like to see who and when people disconnect.
0
Comment
Question by:TechGuy_007
  • 2
3 Comments
 
LVL 33

Expert Comment

by:MikeKane
ID: 34972201
You can pick this right out of the normal syslog severity 5 messages #722033

i.e.  "Group <tunnel name> User <username> IP <source ip> First TCP SVC connection established for SVC session.
0
 

Author Comment

by:TechGuy_007
ID: 34972846
Is there a way to adjust the logging to just capture these instances from here on out though? Also we have VOIP phones that connect as VPN Peers and seem to be timing out. Is there a way to adjust this to unlimited or just make it more stable?
0
 
LVL 33

Accepted Solution

by:
MikeKane earned 500 total points
ID: 34975719
Well, you can filter out syslog messages to just capture what you want at the server side.    You can also specify custom logging in the ASA for VPN informational, and leave everything else at a lower logging level....  

What I do usually is setup a syslogging tool that does log analysis.   There are a few good ones out there, like sawmill.  They can crunch through the syslog output and generate some decent reports like this....
0

Featured Post

Free Tool: Postgres Monitoring System

A PHP and Perl based system to collect and display usage statistics from PostgreSQL databases.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This is about downgrading PIX Version 8.0(4) & ASDM 6.1(5) to PIX 7.2(4) and ASDM 5.2(4) but with only 64MB RAM and 16MB flash. Background: You have a Cisco Pix 515E which was running on PIX 7.2(4) and its supporting ASDM 5.2(4) without any i…
I recently updated from an old PIX platform to the new ASA platform.  While upgrading, I was tremendously confused about how the VPN and AnyConnect licensing works.  It turns out that the ASA has 3 different VPN licensing schemes. "site-to-site" …
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

840 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question