PIX 525-How do I capture all source-destination info
I have a customer with a PIX 525 currently doing allow all-exclude by exception and we need to change this!! Since they don't know who should or shouldn't be getting through, how do I capture source/destination traffic for all users to obtain this info?
Re: PIX 525-How do I capture all source-destination info
A way would be to configure a syslog server to capture all the traffic going through PIX. However in your situation, I feel that you'll get lot of logs and will have to find traffic related to IPs you are interested in from thos huge log files. Here's how you can configure PIX for syslogging-
You can download a syslog server from following link, if required.
BenefitsDocumentationPrerequisiteImage Download LinksLimitationsSupported PlatformsLicense RequirementsTopologyStep-By-Step ConfigurationConfigure Virtual ServiceActivate the virtual service and configure guest IPsConfiguring UTD (Service Plane)Configurin...
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...