Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
999
Views
8
Helpful
4
Replies

ASA syslog problem

jgary
Level 1
Level 1

‎02-28-2008 11:46 AM - edited ‎03-12-2019 05:57 PM

Hello,

My customer have a ASA 5550 in HA. It is the Internet Firewall.

In this moment the firewall have 50.000 connection. Customer review the log in the syslog server and noted wich not all syslog messages the firewall are notify to the syslog server.

The configuration is the follow:

logging enable

logging timestamp

logging standby

logging buffered debugging

logging trap debugging

logging asdm debugging

logging mail warnings

logging from-address dsi@uc.cl

logging recipient-address dsi@uc.cl level errors

logging facility 22

logging host management 192.168.120.222.

All rules have the log keyword and debugging level.

I think, the firewall can't send the all messages because is busy with the conection. Someone have been this problem.

Thank you

Labels:
0 Helpful
4 Replies 4

rajbhatt
Level 3
Level 3

‎02-29-2008 03:31 AM

Hi,

For troubleshooting these few messages should be sufficient :for syslog U can remove buffered and trap debugging .

mail notifications stays as it is

logging host inside 1.2.3.4

logging timestamp

logging trap 5

logging on

Raj

jgary
Level 1
Level 1
In response to rajbhatt

‎03-03-2008 07:37 AM

Hi,

Thank you for you comment. But the proble is the login messages not reflect all activities and conections through the firewall.

Regards.

0 Helpful

jim
Level 1
Level 1
In response to jgary

‎03-03-2008 10:48 AM

pager lines 24

logging enable

logging standby

logging buffer-size 1000000

logging monitor debugging

logging buffered debugging

logging trap debugging

logging asdm errors

logging host inside 172.16.5.110

logging host inside 172.16.0.152 format emblem

logging class config asdm emergencies

logging class ids asdm debugging

no logging message 106015

no logging message 106006

no logging message 106001

no logging message 106023

no logging message 305012

no logging message 305011

no logging message 710005

no logging message 106100

no logging message 100000

no logging message 302014

no logging message 304002

no logging message 304001

no logging message 609002

no logging message 609001

no logging message 302016

no logging message 302021

no logging message 302020

logging message 106023 level informational

logging message 305012 level debugging

logging message 302015 level debugging

logging message 302014 level debugging

logging message 302013 level debugging

logging message 304001 level informational

logging message 302016 level debugging

jgary
Level 1
Level 1
In response to jim

‎03-28-2008 06:29 AM

Thank you for you answer, i help me.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card