What is the best way to log nat and pat translations from a 6500 pix blade??

Unanswered Question
Jul 9th, 2010

I'm looking for a good software solution to primarily log the nat and pat xlate logs.  I will be watching about 70000 users over two 2gb pipes so a good archiving system would be great also.

Thanks in advance for your help,

Eric

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Farrukh Haroon Thu, 07/15/2010 - 02:02

Can you please tell us more about your requirement, Do you want to see the actual traffic / connections pertaining to the users or do you just want to know how the IPs have been allocated. For the first option netflow is the recommend way to go, you may also look at www.fireplotter.com (real-time).There are a number of free netflow analyzer available on the Internet.

For the second option, syslogs are sufficient. Any good syslog analyzer (or even SIEM) would give you this information or would let you write a brief parser/rule if its not already covered (e.g. MARS, Loglogic etc).

Regards

Farrukh

Actions

This Discussion