Management wants to keep a permanent record of the xlate table so they can track down inside (private) IP addresses when we are sent DMCA violation letters.
Eventually, we will have converted about 1500 inside hosts to private address space.
Has anyone got a best practice for doing this?
Xlate creation and destruction doesn't seem to get logged in syslog and I don't see any traps or MIB entries off the top of my head in http://supportwiki.cisco.com/ViewWiki/index.php/SNMP_MIBs_and_Traps_on_the_ASA_-_Additional_Information. FWSM seems to have a "NAT-MIB" but not ASA.
I suppose we could just log in to the device and so a "show xlate" periodically.