Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

ASA Syslog Options

In the ASA reference manual is says you can send certain syslog messages to the syslog server and cut out unwanted ones.  For example the below command came from the manual, can anyone tell me what the format is for the "message_list" option?

In other words, if I just want to see timestamps and session information for remote access users going to my syslog server how would I set that up within the ASA?

logging trap {severity_level | message_list}

Thanks,

glh

2 REPLIES
Cisco Employee

Re: ASA Syslog Options

You can send all the syslog messages for remote vpn client only to your syslog server as follows:

logging list vpn-log level debugging class vpnc
logging trap vpn-log

OR/ alternatively, if you know exactly which syslog messages you are after, you can configure it this way:

logging list vpn-list message 611101

logging trap vpn-list

The vpn client syslog is within the 611xxx range, and here is the syslog for your reference:

http://www.cisco.com/en/US/docs/security/asa/asa80/system/message/logmsgs.html#wp4774570

Hope that helps.

New Member

Re: ASA Syslog Options

Can I also send the critical and/or error messages as well as the vpnc messages to the syslog server?  If yes, what would that configuration look like?

Thanks for your response this is a big help!

glh

274
Views
0
Helpful
2
Replies
CreatePlease login to create content