06-16-2009 06:40 AM - edited 03-11-2019 08:44 AM
I have syslog set to log to level 7...but I am doing a "debug sqlnet 255" to resolve an inspection issue and the debug messages only show up when I am logged into the ASA, they dont get sent to the syslog server.
how can i resolve this?
06-17-2009 08:58 AM
make sure your server configuration is correct, your asa has the correct server IP address, and that your server itself doesn't have anything blocking the UDP port for syslog.
06-17-2009 09:04 AM
You need to trap your messages. If you can post your logging config, I can help you out further, but generally you'd want:
logging enable
logging trap 7
logging facility 23
logging host inside
The facility 23 line is a syslog server running on Linux. There are different facilities, but 23 generally works for all that I've found.
HTH,
John
06-17-2009 12:41 PM
was just pasting my logging config here and I realized the problem. You must use:
logg debug-trace
in order to send debug messages to syslog, otherwise they only show up at console which is what I was experiencing.
06-17-2009 12:44 PM
Good to know. Rated. :)
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: