Solved

How to enable and view IPSEC VPN on Cisco ASA 5510?

Posted on 2013-05-16
9
481 Views
Last Modified: 2013-05-31
Hi there,

How can I enable logging for IPSEC VPN on Cisco ASA 5510 and then view and filter by username and date range?

Thanks.
CB
0
Comment
Question by:czarbapora
  • 5
  • 4
9 Comments
 
LVL 28

Expert Comment

by:asavener
ID: 39171958
You want to see who uses your remote access VPN?
0
 
LVL 28

Expert Comment

by:asavener
ID: 39171967
Command line to see who's currently on:

sh vpn-sessiondb remote

Otherwise, log "warning" messages and above to a syslog and then check the log.
0
 

Author Comment

by:czarbapora
ID: 39172639
Not currently on. I want to find a user who was on the VPN last month.
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 
LVL 28

Expert Comment

by:asavener
ID: 39172699
How do your users authenticate?

Unless you were keeping logs already, I think the data is gone.
0
 

Author Comment

by:czarbapora
ID: 39172718
Through Cisco VPN Client
0
 
LVL 28

Expert Comment

by:asavener
ID: 39172740
No, that's where they enter their credentials.  The ASA should have an authentication method assigned to the remote access VPN.  (Typically, it's user accounts on the ASA, a RADIUS server, or Kerberos/Active Directory.)
0
 

Author Comment

by:czarbapora
ID: 39211610
You are correct, users authenticate with the user account on the ASA.

Thanks.
0
 
LVL 28

Accepted Solution

by:
asavener earned 500 total points
ID: 39211712
OK.

Then user authentication would be logged on the ASA.  By this time, the buffer will be flushed, so your only hope is that the ASA sends log entries to a syslog server.
0
 

Author Closing Comment

by:czarbapora
ID: 39211737
Thank you.
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I found an issue or “bug” in the SonicOS platform (the firmware controlling SonicWALL security appliances) that has to do with renaming Default Service Objects, which then causes a portion of the system to become uncontrollable and unstable. BACK…
I recently attended Cisco Live! in Las Vegas, a conference that boasted over 28,000 techies in attendance, and a week of hands-on learning hosted by a solid partner with which Concerto goes to market.  Every year, Cisco displays cutting-edge technol…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

785 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question