Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
Community Member

FWSM Logging

Dears,

I have a strange problem, the traffic which is allowed through FWSM when it passes it doesn't show me in logging buffer . Connection get established by ssh protocol users sucessful login but when i try to check by sh logging | in 10.10.10.10 there is no logs for the IP address.

I have not disable any messages although i have enabled debug level for buffer but still there are no logs.Below are the configs for the logging in FWSM.

FWSM# sh run | in logging

logging enable

logging timestamp

logging buffer-size 8096

logging asdm-buffer-size 512

logging buffered debugging

logging trap debugging

logging asdm debugging

logging queue 8192

logging host MGMT 172.24.100.100

logging host MGMT 172.24.100.12

Thanks

4 REPLIES
Red

FWSM Logging

Hi Jack,

The buffer size seems smaller to me as compared the numbe of logs being generated by the ASA, try chceking it on your syslog server, or you might need to incresae the buffer size:

logging buffer-size

then do:

clear logging buffer

try ssh, and then check the logg again.

Best option I would say is the syslog server, as you would have less chance of losing it.

Hope that helps.

Thanks,

Varun

Thanks, Varun Rao Security Team, Cisco TAC
Community Member

FWSM Logging

thanks for repy varun,

I didnt checked in syslog but i did with clear logging buffer and i trigger the login ssh and then i checked in 5 seconds it was nothing showing me with that IP. I m sure with the IP becz when i start captures it shows me the IP address as source of the packet.

Any more hints,

Community Member

FWSM Logging

Hi,

can anybody give me hints please where could be wrong for such type of issues.

Thanks.

FWSM Logging

Hello Jack,

Can you dissable the logging service and then re-enable it, maybe the process got stuck.

no logging enable

no logging buffered debugging

logging enable

logging buffered debugging.

Please rate helpful posts,

Regards,

Julio

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC
633
Views
0
Helpful
4
Replies
CreatePlease to create content