Trying Configure Syslogging on PIX Code 6.2

Unanswered Question

I inhereited this mess and our ASA 5510's are in route so plan to upgrade are already in place.In the meantime I have to some syslogging. our private network is 10.1.x.x our DMZ address is 10.254.x.x I have a permit ACL for ICMP and Syslogging, however the command I give to tell it to start logging :

pixfirewall(config)# logging host inside 10.1.2.10 udp 514

is returned with this error:

Port out of range: 1025-65535

besides resolving this error is there any other configurations that need to implemented to make this work ? This is a PIX 506e

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Luis Melendrez Wed, 02/06/2008 - 08:50

Don't specify the udp port

pixfirewall(config)# logging host inside 10.1.2.10

If you dont specify the default port is UDP 514

Collin Clark Wed, 02/06/2008 - 08:55

You don't need the UDP 514 since it's the default syslog port and protocol. If you wanted to send it on another port you would specify it and it needs to be in the range of 1025-65535. The only other thing you might want to review is the logging level of syslog.

logging trap debug [warning: can cause a ton of messages]

logging on

HTH

Actions

This Discussion