11-17-2008 01:14 PM - edited 03-11-2019 07:14 AM
Hi all
My syslog is being hammered by a lot of useless junk. is the way to deal with this through rate limits? If so what is a sensible number of messages and interval to set?
Thanks
11-17-2008 11:11 PM
A better option would be to turn of logging for unwanted syslog messages e.g.
no logging message
Or use logging lists/classes:
Regards
Farrukh
11-18-2008 04:05 AM
I'd like to log unsuccessful attempts but only once.
So for example I only want one entry for someone trying to ping me rather than every single packet.
Turning off a specific message seems to be global which I'd rather not do if I can avoid it.
Any ideas?
11-18-2008 06:06 AM
I don't think you can do this on the ASA. You could perhaps send this information to a specialized syslog analyzer (like MARS,manage engine, Sawmill) and then run custom queries/reports.
Regards
Farrukh
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: