logging asa debug to syslog?

Unanswered Question
Jun 16th, 2009
User Badges:

I have syslog set to log to level 7...but I am doing a "debug sqlnet 255" to resolve an inspection issue and the debug messages only show up when I am logged into the ASA, they dont get sent to the syslog server.


how can i resolve this?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
abridge-cco Wed, 06/17/2009 - 08:58
User Badges:

make sure your server configuration is correct, your asa has the correct server IP address, and that your server itself doesn't have anything blocking the UDP port for syslog.

John Blakley Wed, 06/17/2009 - 09:04
User Badges:
  • Purple, 4500 points or more

You need to trap your messages. If you can post your logging config, I can help you out further, but generally you'd want:


logging enable

logging trap 7

logging facility 23

logging host inside


The facility 23 line is a syslog server running on Linux. There are different facilities, but 23 generally works for all that I've found.


HTH,

John


slug420 Wed, 06/17/2009 - 12:41
User Badges:

was just pasting my logging config here and I realized the problem. You must use:

logg debug-trace


in order to send debug messages to syslog, otherwise they only show up at console which is what I was experiencing.

Actions

This Discussion