Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

How to trigger an alarm on the firewall?

Hi Forum,

My ASA was configured to send alarm to Syslog server at critical level. How do I trigger an alarm to see if the logging really works at critical level?

Thanks much,

PN

1 ACCEPTED SOLUTION

Accepted Solutions
Gold

Re: How to trigger an alarm on the firewall?

enter the following command in config mode:

logging message 111005 level critical

that sets message log 111005 to the critical level. this particular log ID generates a message like the following:

Jun 20 2007 00:27:53: %PIX-5-111005: 192.168.x.y end configuration: OK

that message should be sent to your syslog server

when you're done testing, be sure to enter:

no logging message 111005 level critical

4 REPLIES
Gold

Re: How to trigger an alarm on the firewall?

enter the following command in config mode:

logging message 111005 level critical

that sets message log 111005 to the critical level. this particular log ID generates a message like the following:

Jun 20 2007 00:27:53: %PIX-5-111005: 192.168.x.y end configuration: OK

that message should be sent to your syslog server

when you're done testing, be sure to enter:

no logging message 111005 level critical

New Member

Re: How to trigger an alarm on the firewall?

Hi Srue,

This is really useful! Actually it is the requirement of the SOX auditor to test whether the logging works. Can this be applied to PIX 515 as well?

Thanks much,

PN

New Member

Re: How to trigger an alarm on the firewall?

Hi Srue,

by entering "logging message 111005 level critical ", will it trigger a message immediately? I can't seems to get any message, but my the configuration has proven working coz it captured some spoofed traffic before.

Thanks much,

PN

Re: How to trigger an alarm on the firewall?

it should trigger a message imediately in your syslog server..

even by just entering " logging message 111005 " ENTER and see your syslogs.

114
Views
5
Helpful
4
Replies