Avatar of mphillip85
mphillip85
Flag for United States of America asked on

centos 7 configure rsyslog to receive cisco logs

I have not been able to verify that logs are being received on the centos 7 server using rsyslog

firewall has udp 514 open and listening same set on the cisco asa

cannot see why it is not working, I do sh logging and it shows how many TX are being sent via the trigger but cannot find on rsyslog server.
Hardware FirewallsCiscoLinux Networking

Avatar of undefined
Last Comment
Jan Bacher

8/22/2022 - Mon
ASKER CERTIFIED SOLUTION
Jan Bacher

THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
GET A PERSONALIZED SOLUTION
Ask your own question & get feedback from real experts
Find out why thousands trust the EE community with their toughest problems.
Jan Bacher

And update logrotate:

   /etc/logrotate.d/syslog

Add /var/log/asa.log
mphillip85

ASKER
did I give you all the information you needed to review?

because you gave me the only answer that worked, over all the documentation that I have read.

Thank you very much!
Jan Bacher

You did.  You were very clear.
All of life is about relationships, and EE has made a viirtual community a real community. It lifts everyone's boat
William Peck