I have been studying Cisco docs for a couple of weeks now, and haven't figured out how to log and view traffic. We run a 2620 as a internet gateway, and I have managed to implement NAT, apply access control lists, enable SNMP traps, setup a syslog daemon, secure passwords, and deny certain traffic.
What I'd like to do is view any inbound traffic that is denied. ( SNMP is sendind alerts successfully, but I have yet to get the console to decode them - it won't load the Cisco MIBs ). We have the IOS FW and IPSec, and I'm still trying to learn how to configure and use them. I also don't know how they fit in with NAT.
Any pointers to less obtuse docs, or other help is appreciated.
Thanks for the URLs and advice. 1 URL gave me a hint (console logging issue ). I am getting the SNMP traps sent to a Win 98 w/s running Kiwi's syslog daemon, just that the Laroit SNMP manager is giving me trouble decoding the messages. Because of budgeting issues I must use these freeware apps....
However, I think what I really need to do is to dig deeper into the IPSec/Firewall configuration. Lots to learn.
I have implemented their product for the PIX and found it mildly useful. You can set up the router in conjunction with this product to do essentially what you're looking for, plus a lot more, I am sure.
DocumentationCode download linksGoalRequirementLimitationsSupported ISR
and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity
options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in
HA DocumentationCode download linksGoalRequirementLimitationsSupported
ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationCo...
Question I am currently unable to specify "crypto keyring" command when
configuring VPN connection on my cisco 2901 router. The following
licenses have been activated on my router :