Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
332
Views
0
Helpful
2
Replies

enable logging for permitted traffic on FWSM v3.1

balsheikh
Level 1
Level 1

‎08-13-2007 02:22 AM - edited ‎03-11-2019 03:56 AM

Hi all,

I'm trying to enable logging for permitted traffic on FWSM running version 3.1 but with no success, I know it seems easy to do it but believe me I got frustrated trying.

Note:

I tried the same for the denied traffic and magically worked fine.

Could you pls shed a light on this !!

Regards,

Belal

Labels:
0 Helpful
2 Replies 2

lowen
Level 1
Level 1

‎08-14-2007 11:23 AM

Your problem probably has to do with the level of the messages. You have to ensure that the messages you want to log match the level you're logging at. If you're logging at the "errors" level (logging trap errors), add "log errors" to the end of all your permit ACEs, and do the following:

logging message 302015 level errors

logging message 302014 level errors

logging message 302013 level errors

logging message 302016 level errors

This will log the start and end of all tcp and udp connections. You may need to "promote" other messages for other types of traffic.

0 Helpful

balsheikh
Level 1
Level 1
In response to lowen

‎08-14-2007 11:25 PM

Hi Lowen,

in this case I have to go through the message IDs and find out the required IDs to be enabled.

good to hear that from u, I'll give it a try and get back to you.

Appreciated..

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card