Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
867
Views
0
Helpful
3
Replies

can't get firewall sysloging to work

ronshuster
Level 1
Level 1

‎03-17-2008 08:19 AM

I am running a Linux syslog server (called syslog-ng) and I point the firewall to send all its syslog messages to that server. I believe that I don't have the correct syslog level configured on the firwall, because the syslog server is picking up all syslog messages from the rest of the CAT37505 switches, but not the firewall.

Here's my firewall logging config:

logging enable

logging timestamp

logging console informational

logging buffered notifications

logging trap errors

logging asdm informational

logging mail emergencies

logging facility 16

logging host Inside 192.168.200.54 format emblem

logging permit-hostdown

I can ping this IP address, the routing is ok, nevertheless no syslog messages are reaching the syslog server.

Please assist

Labels:
0 Helpful
3 Replies 3

Joe Clarke
Cisco Employee
Cisco Employee

‎03-17-2008 10:54 AM

Is it that no syslog messages are making it to the server, or is syslog-ng ignoring them? Are you certain the firewall is generating messages? Your trap severity is set to errors which mean only messages level 3 and lower will be sent as syslogs.

0 Helpful

scristian
Level 1
Level 1

‎03-18-2008 10:53 AM

try to put this

snmp-server enable traps syslog

0 Helpful

ronshuster
Level 1
Level 1
In response to scristian

‎03-18-2008 11:07 AM

That did the trick:

snmp-server enable traps syslog

All the messages went to the buffer and console and none made it to the syslog server, it is now working.

Thanks!!!

0 Helpful
Customers Also Viewed These Support Documents