Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
248
Views
5
Helpful
1
Replies

Pix syslog though VPN tunnel?

rtjensen4
Level 4
Level 4

‎08-20-2007 01:21 PM - edited ‎02-21-2020 03:13 PM

I was wondering if it was possible to send the PIX's syslog through the VPN that is terminated on it.

Attached is a rough Visio of what I'm trying to do.

Labels:
23251-logs.vsd
0 Helpful
1 Reply 1

acomiskey
Level 10
Level 10

‎08-21-2007 04:52 AM

I can't see your visio right now but I assume it is something like this

pix1 -> vpn tunnel -> pix2 -> inside -> syslog server

and you want to syslog from pix1 to the syslog server?

This is possible and you must...

1. Add the outside interface address to the interesting traffic crypto acl's on both pixes.

pix1

outside interface = 1.1.1.1

syslog server = 192.168.1.1

access-list crypto permit ip host 1.1.1.1 host 192.168.1.1

pix2

access-list crypto permit ip host 192.168.1.1 host 1.1.1.1

2. Add the logging statement to pix1

logging host outside 192.168.1.1

Hope this helps, please rate helpful posts.

Customers Also Viewed These Support Documents