I am hoping to tighten the audit trail regarding the physical opening and closing of VPNs on our 3000 so we have a notification when someone logs in to allow access for an external user. The kit allows a number of collection methods traps,emails, syslog etc and all these via severity levels and event classes. My query is if anyboody has advice on which event classes are the best to use, many of which will track a VPN coming online via interesting traffic but are there any that will indicate if a VPN has been 'activated'? Eg a log saying VPN_Marketing_Support activated?
Any help would be appreciated as I am new to this area and the forum but I guess thats the case for everyone at sometime.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...