Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Pix 515 Logging "allowed connections"

Can anyone tell me if it is possible to log to a syslog "allowed connections".

We have some access-lists with port redirection to internal servers behind the Pix 515.

We want to log all connections from the internet to the external IP, both allowed connections and denied.

logging trap debugging, does not log the allowed connections. I have tried this. Is there any other way do accomplish this?

Thanks in advance!

Gregory Manglaris

Network Engineer

gmanglaris@allamericaninsurance.net

1 ACCEPTED SOLUTION

Accepted Solutions
Silver

Re: Pix 515 Logging "allowed connections"

The pix does log connections. These show up as an information syslog message #30213 and look like this "Built inbound TCP connection 529605 for outside:207.207.58.100/32792 (207.207.58.100/32792) to inside:w.x.y.z/80 (a.b.c.d/80)".

The IP address represented by w.x.y.z will the the internal address of your host and the IP address represented by a.b.c.d will be the public address of that host.

2 REPLIES
Silver

Re: Pix 515 Logging "allowed connections"

The pix does log connections. These show up as an information syslog message #30213 and look like this "Built inbound TCP connection 529605 for outside:207.207.58.100/32792 (207.207.58.100/32792) to inside:w.x.y.z/80 (a.b.c.d/80)".

The IP address represented by w.x.y.z will the the internal address of your host and the IP address represented by a.b.c.d will be the public address of that host.

New Member

Re: Pix 515 Logging "allowed connections"

Ok that exactly what I was looking for, #30213 was blocked that explains why I couldn't see the incoming connections. Now I see them

Thanks alot

Gregory Manglaris

Network Engineer

gregg@wirealm.net

104
Views
0
Helpful
2
Replies
CreatePlease login to create content