ASA syslog

Unanswered Question
Apr 13th, 2007


I am collecting syslog from my ASA to my ciscoworks . I want to know how to set the level of the logging instances like

logging trap

logging console

Do I have to set to informational to get all traces of my firewall? It generates 1 gig off syslog/day. Is it the right thing to do?


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
rico_hao40 Fri, 04/13/2007 - 12:14

To enable syslog server do following setp:

logging on

logging host inside x.x.x.x

(x.x.x.x is the ip address of the server)

logging trap [level]

Different levels are as follows:

0 - Emergencies - System unusable messages.

1 - Alerts - Take immediate attention.

2 - Critical - Critical Condition.

3 - Errors - Error messages (this is the default level)

4 - Warnings - Warning messages.

5 - Notifications - Normal but significant condition.

6 - Informational - Informational message.

7 - Debugging - Debug messages and log FTP commands and WWW URLs.

Here is a link which tells in detail about all the syslog messages on PIX-

If your disk is big enough it is not a big deal for 1 g per day. You only need write a script and delete the old file to save your disk.


This Discussion