Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

syslogging from a branch to corporate through the VPN

How would you go about capturing syslog messages from a branch PIX (pix 506) which has a site-to-site VPN connection to our corporate office running a pix 515UR? I believe I can have the 506 send the syslog messages in the clear through the net, but my syslog server is on my inside network, and I don't want to create a static/conduit to expose it. Rather, I would like the 506 to send the syslog messages through the VPN tunnel to my protected server.

Is this possible? Anyone have any advice?

Thanks

2 REPLIES
Cisco Employee

Re: syslogging from a branch to corporate through the VPN

It is possible. Take a look at using TCP Syslog on the PIX, rather than standard UDP.

New Member

Re: syslogging from a branch to corporate through the VPN

The problem with TCP syslog, as I understand it, if it fails to successfully log messages to the syslog server, the firewall will quit passing traffic. Is that not the case?

100
Views
0
Helpful
2
Replies