Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
410
Views
0
Helpful
2
Replies

syslogging from a branch to corporate through the VPN

mgeneral
Level 1
Level 1

‎11-02-2001 03:31 PM - edited ‎02-21-2020 11:28 AM

How would you go about capturing syslog messages from a branch PIX (pix 506) which has a site-to-site VPN connection to our corporate office running a pix 515UR? I believe I can have the 506 send the syslog messages in the clear through the net, but my syslog server is on my inside network, and I don't want to create a static/conduit to expose it. Rather, I would like the 506 to send the syslog messages through the VPN tunnel to my protected server.

Is this possible? Anyone have any advice?

Thanks

Labels:
0 Helpful
2 Replies 2

brford
Cisco Employee
Cisco Employee

‎11-03-2001 08:14 AM

It is possible. Take a look at using TCP Syslog on the PIX, rather than standard UDP.

Brian Ford | brford@cisco.com | brford@yahoo.com | 51 75 61 6c 69 74 79 20 6d 65 61 6e 73 20 64 6f 69 6e 67 20 69 74 20 72 69 67 68 74 20 77 68 65 6e 20 6e 6f 20 6f 6e 65 20 69 73 20 6c 6f 6f 6b 69 6e 67 2e | Email me when you figure this out.
0 Helpful

mgeneral
Level 1
Level 1
In response to brford

‎11-03-2001 10:30 AM

The problem with TCP syslog, as I understand it, if it fails to successfully log messages to the syslog server, the firewall will quit passing traffic. Is that not the case?

0 Helpful
Customers Also Viewed These Support Documents