monitor changes to a PIX config

Unanswered Question
Feb 2nd, 2007

Is there an easy way to monitor what changes have been made to a PIX config? Maybe via syslog ?


I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Collin Clark Fri, 02/02/2007 - 07:08

We do it via syslog. Works well, but the biggest problem is figuring out who did it!

kevburgess Fri, 02/02/2007 - 07:14

What level are you syslogging? Informational?

I find that the logs are huge if I go that low...

Collin Clark Fri, 02/02/2007 - 07:24

Our security policy (actually security people) require debug! Yup over a gig of syslog data a day for one firewall. Obviously we use a script to parse out the commands entered.


This Discussion