Syslog to log vty and console

Unanswered Question
May 8th, 2009
User Badges:

I want my ASA 5540 having OS 7.x to log only telnet and console login informations to my external kiwi syslog software


I have typed

logging host inside 10.1.1.1

and then I have set the logging trap to informational


I only want line vty and console logins to be sent to syslog server



  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
John Blakley Fri, 05/08/2009 - 12:50
User Badges:
  • Purple, 4500 points or more

Here's a list of logging messages:


http://www.cisco.com/en/US/docs/security/asa/asa80/system/message/logsevp.html#wpxref25608


Find the message numbers that you want to log. Then, what you'll need to do is set up the types of messages that you want to log:


Create a logging list:


logging list SYSLOG level errors


Then add the messages that you want to log in addition to errors and below:


logging list SYSLOG message 211001

logging list SYSLOG message 106001-106007


Then apply:


logging monitor SYSLOG

logging trap SYSLOG


HTH,

John


Collin Clark Fri, 05/08/2009 - 14:08
User Badges:
  • Purple, 4500 points or more

That's cool John, never knew you could do that.

Actions

This Discussion