Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

Sessions Behind PIX

I have 10 servers behind pix running multiple applications and clients are connected to them only when i allow there IP . But i want to manage a log file so every 1 passing PIX will be logged is there any way to do this. Is it possible using SYSLog

4 REPLIES
Community Member

Re: Sessions Behind PIX

I am not sure what reason for that is but if want to know who and when is accessing the server, you could use authentication proxy on the pix.

http://www.cisco.com/en/US/docs/security/asa/asa72/configuration/guide/fwaaa.html#wp1043431

Rafal

Community Member

Re: Sessions Behind PIX

basically one of the user is not been able to connect to a port , so i want to verify weather he is reachinging the server or is blocked on firewall

Community Member

Re: Sessions Behind PIX

for this kind of troubleshooting I would use either traffic capture on the PIX or even a sniffer (e.g. wireshark). You can SPAN the port on the switch and filter the traffic capture by ip address.

On the pix you can also use sh local-host command, but that info would guarantee that all is working OK.

Community Member

Re: Sessions Behind PIX

Is there any other why through which i can monitor the IP's. Using SYSlog etc

124
Views
0
Helpful
4
Replies
CreatePlease to create content