Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Log VPN connections

Hey everyone,

I'd like to be able to log when a user connects/disconnects to our IPSec VPN running on a Cisco 2821 router. Can anyone point me in the right direction?

Thanks!

Ben

Everyone's tags (3)
1 ACCEPTED SOLUTION

Accepted Solutions
Cisco Employee

Re: Log VPN connections

Hi, Ben:

For generic IPSec session logging, use "crypto logging session" instead.

Thanks,

Wen

4 REPLIES

Re: Log VPN connections

Syslog would certainly do it. You would then have to filter your syslog on the event, but it's do-able (and cheap). I would assume that Cisco Security Manager could do it, but that might be too expensive for your environment.

Cisco Employee

Re: Log VPN connections

Hi, Ben:

I'm assuming you are running ezvpn on the router. If that's the case, you could probably use the "crypto logging ezvpn group" command to log user sessions. If you are also using an external AAA server for user authentication, you could also use aaa accounting for this purpose as well.

Thanks,

Wen

New Member

Re: Log VPN connections

Thanks guys, I've got logging directed at a syslog server. Wen, you're right, we are using ezvpn, alongside an IPSec VPN for unix clients. I'll give "crypto logging ezvpn group" a shot, is there something similar for the IPSec half?

Thanks!

Ben

Cisco Employee

Re: Log VPN connections

Hi, Ben:

For generic IPSec session logging, use "crypto logging session" instead.

Thanks,

Wen

1551
Views
5
Helpful
4
Replies