02-03-2003 10:55 AM - edited 02-20-2020 10:32 PM
Can anyone tell me if it is possible to log to a syslog "allowed connections".
We have some access-lists with port redirection to internal servers behind the Pix 515.
We want to log all connections from the internet to the external IP, both allowed connections and denied.
logging trap debugging, does not log the allowed connections. I have tried this. Is there any other way do accomplish this?
Thanks in advance!
Gregory Manglaris
Network Engineer
gmanglaris@allamericaninsurance.net
Solved! Go to Solution.
02-10-2003 12:17 PM
The pix does log connections. These show up as an information syslog message #30213 and look like this "Built inbound TCP connection 529605 for outside:207.207.58.100/32792 (207.207.58.100/32792) to inside:w.x.y.z/80 (a.b.c.d/80)".
The IP address represented by w.x.y.z will the the internal address of your host and the IP address represented by a.b.c.d will be the public address of that host.
02-10-2003 12:17 PM
The pix does log connections. These show up as an information syslog message #30213 and look like this "Built inbound TCP connection 529605 for outside:207.207.58.100/32792 (207.207.58.100/32792) to inside:w.x.y.z/80 (a.b.c.d/80)".
The IP address represented by w.x.y.z will the the internal address of your host and the IP address represented by a.b.c.d will be the public address of that host.
02-11-2003 09:58 AM
Ok that exactly what I was looking for, #30213 was blocked that explains why I couldn't see the incoming connections. Now I see them
Thanks alot
Gregory Manglaris
Network Engineer
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide