PIX 515 E Version 6.3(4) not logging to Syslog -

yogendra.trivedi · ‎01-03-2007

Hi Folks,

Our PIX 515E version 6.3(4) is not logging to syslog for all events except for the events which are generated due to Admin priv access.

We've configured following:-

Logging on

logging timestamp

logging trap notifications

logging host interface SyslLogIP

Now when Admin executes any commands such as conf t, write mem etc, it gets logged but the denied trafic is not getting logged.

We have following ACLs applied at end:-

access-list from_inside deny ip any any log

etc.

What's wrong:)

Thanks

andrew.burns · ‎01-04-2007

Hi,

Try changing the logging level from notifications to informational.

HTH

Andrew.

yogendra.trivedi · ‎01-04-2007

but in that case it will log everything and we want noitficaitons and below .

yogendra.trivedi · ‎01-04-2007

Hi,

I changed it to logging trap informational and it started logging in logging trap notificaitons its not?

Is it PIX IOS problem?

How to move further?

Thanks

andrew.burns · ‎01-04-2007

Hi,

Another option would be to change the access-list logging level, e.g.

access-list from_inside deny ip any any log 5

HTH - plz rate if useful.

Andrew.