Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
547
Views
10
Helpful
7
Replies

No Messages from Syslog Server

dianewalker
Level 1
Level 1

‎02-09-2009 03:03 PM - edited ‎02-21-2020 03:16 AM

We have ASA 5550 (ver. 8.0.4). We configured the ASA so that messages can be sent to Syslog server. We were able to ping the Syslog server from the ASA. However, no messages are sent to the Syslog server. The Syslog server has been configured to accept messages from the ASA. Below is part of the config of the ASA. Thanks.

logging enable

logging list Events level errors class auth

logging list Events level errors class session

logging list Events level errors class sys

logging console errors

logging asdm informational

logging mail errors

logging from-address <A HREF="mailto:ASA@mydomain.com">ASA@mydomain.com</A>

logging recipient-address <A HREF="mailto:alerts@mydomain.com">alerts@mydomain.com</A> level errors

logging host Inside XXX.X.X.XXX

0 Helpful
7 Replies 7

eddie.mitchell
Level 3
Level 3

‎02-10-2009 10:59 AM

I don't see the configuration line to define your logging trap. You should have a line like this:

logging trap (I have mine set to informational)

I would also recommend enabling timestamps on your syslog messages via:

logging timestamp

Hope this helps.

dianewalker
Level 1
Level 1
In response to eddie.mitchell

‎02-10-2009 12:50 PM

I added "logging trap informational" and "logging timestamp" statements on the ASA. Still, nothing showed up in the Syslog server. Do you have any other suggestions? Thanks.

0 Helpful

dianewalker
Level 1
Level 1
In response to dianewalker

‎02-10-2009 01:35 PM

Eddie,

Please ignore my previous message. I added "logging facility 19" and now I started to receive messages from the Syslog server. May I ask you another question? Do I open the Sylog file by using Excel? I just wonder if you would use other utility to open the Syslog file. Thanks again.

0 Helpful

eddie.mitchell
Level 3
Level 3
In response to dianewalker

‎02-10-2009 02:15 PM

Are you using a Kiwi Syslog server? What are you trying to do with the logs? If you're trying to do some level of analytics and run reports based on the syslog messages, there are a bunch of useful tools available for this:

http://www.kiwisyslog.com/kb/info:-log-reporting-and-analysis/

dianewalker
Level 1
Level 1
In response to eddie.mitchell

‎02-10-2009 06:42 PM

Thanks for your prompt response and information, Eddie. My Syslog server is not a Kiwi server. I am using the logs to troubleshoot problems and to see the activities on the ASA. I will continue using Excel to open the Log files. Thanks very much again.

0 Helpful

eddie.mitchell
Level 3
Level 3
In response to dianewalker

‎02-11-2009 05:01 AM

If it's a Unix based syslog server, you can just use the standard commands to view and search through the syslog files.

cat

cat | grep

tail

tail -f

0 Helpful

dianewalker
Level 1
Level 1
In response to eddie.mitchell

‎02-11-2009 06:54 PM

Thank you very much.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card