• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 456
  • Last Modified:

asa default inspection - where do I see non matches?

I have some traffic that is being dropped by the default inspection on a Cisco ASA. If I uncheck that inspection it works fine, my question is where do I go to see the traffic that is dropped because of the inspection. I would think it would shop in the ASDM syslog messages but it does not...does anybody know?
0
gconyers
Asked:
gconyers
1 Solution
 
xDUCKxCommented:
It depends on what logging level you have setup and how you're storing it.  This is a long read, but it covers how logging is enabled on an ASA.

http://www.cisco.com/en/US/docs/security/asa/asa82/configuration/guide/monitor_syslog.html
0
 
gconyersAuthor Commented:
Do you happen to know what level is required to view the traffic that is dropped by the default inspection...?

Syslog Message Severity Levels
Level Number
Severity Level
Description
0

emergencies

System is unusable.

1

alert

Immediate action is needed.

2

critical

Critical conditions.

3

error

Error conditions.

4

warning

Warning conditions.

5

notification

Normal but significant conditions.

6

informational

Informational messages only.

7

debugging

Debugging messages only.
0

Featured Post

Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now