I inhereited this mess and our ASA 5510's are in route so plan to upgrade are already in place.In the meantime I have to some syslogging. our private network is 10.1.x.x our DMZ address is 10.254.x.x I have a permit ACL for ICMP and Syslogging, however the command I give to tell it to start logging :
You don't need the UDP 514 since it's the default syslog port and protocol. If you wanted to send it on another port you would specify it and it needs to be in the range of 1025-65535. The only other thing you might want to review is the logging level of syslog.
logging trap debug [warning: can cause a ton of messages]
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...