Capture traffic log on PIX

Unanswered Question
Mar 24th, 2008

I have seen a lot of people post actual log messages/error messages from their firewalls to aid in troubleshooting. How do I enable that to be able to do it?

I have a PIX 6.3(3) that I need to see port traffic as it passes to figure out what my connectivity problem may be.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
gomeso Mon, 03/24/2008 - 08:38

There are two ways accomplish what your asking...

You can get obtain the logs from the ASDM. Click Monitoring >> Logging >> Real-Time Log Viewer or Log Buffer. Then, you can choose to save the logs to a file.

Note: You can filter in ASDM logging the port you are looking for.

Depending on your hyperterminal application, set the application to "recieve ASCII" then run the command "sh logging". Once the "sh logging" has completed, unset the application to "receive ASCII".

Hope this helps.

Jay Johnston Mon, 03/24/2008 - 11:24

In 6.3 you won't have access to ASDM (just PDM)

From the cli enter the commands:

'logging on'

'logging buffered debug'

then

'show log'

You should see live logs on the screen from the pix's syslog buffer.

To disable logs use

'no logging on'

Actions

This Discussion