Solved: Re: Pix 515 Logging "allowed connections"

gmanglaris · ‎02-03-2003

Can anyone tell me if it is possible to log to a syslog "allowed connections".

We have some access-lists with port redirection to internal servers behind the Pix 515.

We want to log all connections from the internet to the external IP, both allowed connections and denied.

logging trap debugging, does not log the allowed connections. I have tried this. Is there any other way do accomplish this?

Thanks in advance!

Gregory Manglaris

Network Engineer

gmanglaris@allamericaninsurance.net

shannong · ‎02-10-2003

The pix does log connections. These show up as an information syslog message #30213 and look like this "Built inbound TCP connection 529605 for outside:207.207.58.100/32792 (207.207.58.100/32792) to inside:w.x.y.z/80 (a.b.c.d/80)".

The IP address represented by w.x.y.z will the the internal address of your host and the IP address represented by a.b.c.d will be the public address of that host.

View solution in original post

shannong · ‎02-10-2003

The pix does log connections. These show up as an information syslog message #30213 and look like this "Built inbound TCP connection 529605 for outside:207.207.58.100/32792 (207.207.58.100/32792) to inside:w.x.y.z/80 (a.b.c.d/80)".

The IP address represented by w.x.y.z will the the internal address of your host and the IP address represented by a.b.c.d will be the public address of that host.

gmanglaris · ‎02-11-2003

Ok that exactly what I was looking for, #30213 was blocked that explains why I couldn't see the incoming connections. Now I see them

Thanks alot

Gregory Manglaris

Network Engineer

gregg@wirealm.net