I am trying to figure out the best strategy for logging with my PIX. Should I be using SYSLOG? If so, what level is appropriate?? Is there a good analyzer to sift throught the syslog and do some analysis? What are others doing??
This really depends on what you'd like to see (i.e. deny's/ environmental alarms/etc) as to what level you log with your PIX. Syslog is the most commonly used facility to log to. Here is a good link on setting up the pix to log to syslog and some on the levels associated with logging as well.
If you do not have a Syslog server Cisco does make a syslog server called the PIX Firewall Syslog Server (PFSS), which is available for PC platforms. To download the Cisco PFSS, go to the Software Center (registered customers only) and select Download PIX Firewall Software.
Most of the customers I've worked with are logging at "debug" level. Most security people want to miss nothing. ;)
This is actually a pretty cool feature, i didn't even know it existed until I was looking for a solution to advertise a subnet (prefix in BGP talk), only if a certain condition existed. This is exactly what conditional advertisements does
j ai une question j ai achete un routeur cisco 887VA-k9 , je le configuré avec la configuration ci- dessous
si je le lier avec mon pc portable sur l un de ses ports directement ça marche toute est bien ( la connexion internet + m...
Attached policy provides CLI access to the Cisco 4G router over text messaging. Two files are in the attached .tar file:
2. PDF with instructions on how to load and use the .tcl file.