arefone
asked on
Configure SYSLOG SERVER OVER VPN CONNECTION
I have a VPN tunnel between Cisco 877 router and Cisco PIX515E firewall, everything is working ok between the two subnets. The one thing I was not able to do is the configuration of the syslog server between the router and the host in the pix's subnet. I tried to ping the pix's subnet from the router outside interface, the result is unsuccessful, but when I tried to ping from the inside interface it is successful.
192.168.8.0/24 - Router 877 - xxx.xxx.xxx.xxx ------------- VPN ------------- xxx.xxx.xxx.xxx PIX515E - 192.168.100.0/24
I would configure a SYSLOG server on the host 192.168.100.241 and send the logging over the VPN from the Cisco router to that host.
Any idea?
thanks in advance
192.168.8.0/24 - Router 877 - xxx.xxx.xxx.xxx ------------- VPN ------------- xxx.xxx.xxx.xxx PIX515E - 192.168.100.0/24
I would configure a SYSLOG server on the host 192.168.100.241 and send the logging over the VPN from the Cisco router to that host.
Any idea?
thanks in advance
ASKER
I have bvi interface, so I have to use BVI1 instead of vlan1, right?
What is the port that cisco syslog use to send messages to the server?
What is the port that cisco syslog use to send messages to the server?
yes, it use default port, so UDP/514
ASKER
how can I use another port? for example, the 1514 instead of 514, how can I apply it on the router?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Your are one of the best expert I met in this site!!! Thanks...
I have one more question about natting, in case I would change the port 514 from inside to outside by doing port redirect, how can I do it?
I have one more question about natting, in case I would change the port 514 from inside to outside by doing port redirect, how can I do it?
ASKER
Great expert!!!
if the vpn is workig you need to set the set the logging source interface:
conf t
logging source-interface vlan 1