Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

ASA Firewall Logs

Hi ,

How can i store the logs of ASA firewall to an external desktop or a server ?

I need to report these logs regulary to the customer.

Everyone's tags (2)
1 ACCEPTED SOLUTION

Accepted Solutions
New Member

ASA Firewall Logs

Try with just    " / "   in the path, because the filezilla already share the entire path, you just configure the asdm/asa-cli with the root path.

17 REPLIES
Hall of Fame Super Silver

ASA Firewall Logs

You need to have a server running a syslog daemon (or ftp server). Then configure that server's IP address as the destination for your ASA's log messages.

You can do the latter from the command line or ASDM GUI, depending on your preference. The configuration guides for the ASA tell you how step-by-step. They are all posted here.

Specifically, see this section for the setup with ASDM 6.4.

New Member

ASA Firewall Logs

Thanks for the reply,

I have done the settings through ASDM but just have one confusion , what should be written in the path field

suppose the ip of my ftp server is 10.10.10.10 and i need to store the logs in a folder named LOG which is placed on the desktop of the server then what shud go in the path field ??

Hall of Fame Super Silver

ASA Firewall Logs

Create a user on the FTP server whose home directory is that LOG folder and then no path needs to be specified.

Alternatively, you can specifiy it as shown in the CLI configuration guide:

logging ftp-server server path username password

Example:

hostname(config)# logging ftp-server 10.1.1.1 /syslogs logsupervisor 1luvMy10gs

The above command identifies the FTP server on which you want to store log buffer content. The server argument specifies the IP address of the external FTP server. The path argument specifies the directory path on the FTP server where the log buffer data is to be saved. This path is relative to the FTP root directory. The username argument specifies a username that is valid for logging into the FTP server. The password argument indicates the password for the username specified.

New Member

ASA Firewall Logs

Still no luck ...

i created a user in ftp assigned tht folder LOG as the root or home directory for it.

in ASDM i gave tha path to the server but still no luck :\

Re: ASA Firewall Logs

find in google kiwi syslog, download it and install

in asa make so

conf t

logging enable

logging timestamp

logging console debugging

logging buffered debugging

logging trap informational

logging asdm informational

logging host inside 192.168.a.b

wr

and dont forget to rate post

New Member

ASA Firewall Logs

Well now i am getting somewhere , Firewall is able to communicate with the ftp server but these messages are being displayed

000069)5/25/2012 12:10:43 PM - cisco (192.168.100.1)> STOR ftp:\\192.168.x.x\Desktop\logs/LOG-2012-05-25-121337.TXT

(000069)5/25/2012 12:10:43 PM - cisco (192.168.100.1)> 550 Filename invalid

(000069)5/25/2012 12:10:43 PM - cisco (192.168.100.1)> QUIT

ASA Firewall Logs

probably fw has not privilege to create file in ftp directory. check it manually.

Hall of Fame Super Silver

ASA Firewall Logs

I see a front slash instead of a backslash in your path preceding the filename. That may be a contributing factor.

New Member

ASA Firewall Logs

i have tried changing tht too...still no success

Hall of Fame Super Silver

ASA Firewall Logs

You may be running into a limitation of your ftp server software. What is your ftp server software?

Have you tried a test of manually creating a file with that name and doing an FTP PUT to upload it and see if it works?

New Member

ASA Firewall Logs

I am using Filezilla..

Hall of Fame Super Silver

Re: ASA Firewall Logs

Have you verified manually that you can copy a file using ftp from your ASA to your server?

For example:

copy disk0:/running-config  ftp://[user[:password]@]server/[path/]filename

Put in your server's IP address in place of "server".

New Member

ASA Firewall Logs

yeah.. it worked

manually i am able to copy files into the root directory.

Can it be the case that the format in which  the ASA saves it log files has some issue ?

New Member

ASA Firewall Logs

STOR ftp://192.168.x.x/LOG-2013-02-25-122705.TXT

(000072)2/25/2013 12:33:07 PM - cisco (192.168.100.1)> 550 Filename invalid

Any help ???

New Member

ASA Firewall Logs

Try with just    " / "   in the path, because the filezilla already share the entire path, you just configure the asdm/asa-cli with the root path.

New Member

ASA Firewall Logs

Sorry but i diidnt understand

Where to use / in the path ?

New Member

ASA Firewall Logs

in the ASDM go to,

Configuration>Device Management>Logging>LoggingSetup. configure FTP Settings.

See in teh picture that I only configure  " / " on the path field

ftp settings.png

2955
Views
0
Helpful
17
Replies
CreatePlease login to create content