Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
779
Views
0
Helpful
9
Replies

VPN logs and details

Go to solution
itdsmartnet
Level 1
Level 1

‎11-25-2008 04:02 AM - edited ‎03-04-2019 12:29 AM

hi,

I have configured ASA 5550 as a VPN server. I want a software from which i get information which user is logged at what time, and this software maintains history also.

Thanks

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
ariesc_33
Level 1
Level 1
In response to itdsmartnet

‎11-26-2008 12:54 AM

you may check on which specific logs you want to receive here

http://www.cisco.com/en/US/docs/security/asa/asa80/system/message/logmsgs.html

and you may enable the logging 113004 for example

logging message 113004

View solution in original post

0 Helpful
9 Replies 9

Go to solution
Giuseppe Larosa
Hall of Fame
Hall of Fame

‎11-25-2008 08:34 AM

Hello Waseem,

configuring a syslog server and an adeguate level of logging should be enough.

Kiwi syslog is a good syslog server that we use and it should be freeware

Hope to help

Giuseppe

0 Helpful

Go to solution
itdsmartnet
Level 1
Level 1
In response to Giuseppe Larosa

‎11-25-2008 10:07 PM

hi Giuseppe

i have configured syslog server but i am unable to see any log. The following commands are entered under ASA 5550 for logging.

"logging on" , "logging host inside 10.101.5.199" Is there any other command in ASA required for proper logging?

0 Helpful

Go to solution
ariesc_33
Level 1
Level 1
In response to itdsmartnet

‎11-25-2008 10:54 PM

you should also specify on which system log messages should be sent to the syslog server such as

logging timestamp

logging buffered debugging

logging trap debugging

logging asdm debugging

logging facility 21

http://www.cisco.com/en/US/docs/security/asa/asa72/system/message/logconf.html#wp1066629

0 Helpful

Go to solution
itdsmartnet
Level 1
Level 1
In response to ariesc_33

‎11-26-2008 12:37 AM

Thanks for your reply, Actually i have configured ASA 5550 as a VPN server and all remote clients are connected to it. Actually i want only those logs which tells me which user connected time and logged off time.

Thanks

0 Helpful

Go to solution
ariesc_33
Level 1
Level 1
In response to itdsmartnet

‎11-26-2008 12:54 AM

you may check on which specific logs you want to receive here

http://www.cisco.com/en/US/docs/security/asa/asa80/system/message/logmsgs.html

and you may enable the logging 113004 for example

logging message 113004

0 Helpful

Go to solution
itdsmartnet
Level 1
Level 1
In response to ariesc_33

‎11-26-2008 03:01 AM

hi,

one thing , how can i filter the log. "logging message " will enable or disable the log for that event id. i only want log to appear on syslog with event id e.g 113004.

0 Helpful

Go to solution
ariesc_33
Level 1
Level 1
In response to itdsmartnet

‎11-28-2008 12:41 AM

logging message level <0-7>

is that what you are looking for?

0 Helpful

Go to solution
itdsmartnet
Level 1
Level 1
In response to ariesc_33

‎11-28-2008 03:52 AM

hi,

actually i only want log for vpn nothing else. i have configured ASA5550 as a vpn server and my remote user and connected to it using cisco vpn clients. just want login time and logout time in syslog nothing else.

0 Helpful

Go to solution
ariesc_33
Level 1
Level 1
In response to itdsmartnet

‎11-28-2008 07:38 AM

im not sure of which of these logs you are looking to filter

113019

721018

721019

722007

722009

722012

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card