01-03-2007 10:59 AM - edited 02-21-2020 01:21 AM
Hi Folks,
Our PIX 515E version 6.3(4) is not logging to syslog for all events except for the events which are generated due to Admin priv access.
We've configured following:-
Logging on
logging timestamp
logging trap notifications
logging host interface SyslLogIP
Now when Admin executes any commands such as conf t, write mem etc, it gets logged but the denied trafic is not getting logged.
We have following ACLs applied at end:-
access-list from_inside deny ip any any log
etc.
What's wrong:)
Thanks
01-04-2007 02:54 AM
Hi,
Try changing the logging level from notifications to informational.
HTH
Andrew.
01-04-2007 03:53 AM
but in that case it will log everything and we want noitficaitons and below .
01-04-2007 09:15 AM
Hi,
I changed it to logging trap informational and it started logging in logging trap notificaitons its not?
Is it PIX IOS problem?
How to move further?
Thanks
01-04-2007 09:47 AM
Hi,
Another option would be to change the access-list logging level, e.g.
access-list from_inside deny ip any any log 5
HTH - plz rate if useful.
Andrew.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: