I am looking for a product that can log just VPN usage on a PIX. I have looked at Private I, but I do not want to know where my internal users are going. I just want to be able to monitor what VPN users connect and when and what they connect to. Also I would like to know when someone is trying to connect to the outside of firewall. I have TACACs enable but that logging is quite limited.
When I saw your post I was immediately going to suggest Private I but I see you have looked at that already. I dont think you have to look at that level of logging although you can with Private I. I dont think youll get much from Tacacs except maybe start stop records which might be enough for your needs. Are you looking at the accounting features available in Cisco Secure ACS or are you using another product?
I dont think Cisco ACS accounting feature will help with users terminating on PIX. Since the users are not actually log'n on PIX. Well what was the private application that u suggest...i will be happy to try that....
I am using CiscoSecure ACS. What I ended up doing was using the Pix Firewall Syslog Server from Cisco and filtering the messages from the PIX I did want to see. Mainly the messages about outbound translations happening, now the log files only keep have the messages I want in them.
I am having the same problem. I am using ACS to authenticate my VPN users, but it's not logging them. It seems to me that if it can Authenticate them it should be able to account them. Let me know if anybody knows how to do the accounting. thanks
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...