https://community.cisco.com/t5/network-security/asa-vpn-logging-issue/m-p/1938263#M458581 <HTML><HEAD></HEAD><BODY><P>Razi,</P><P></P><P>I'm not sure why you can't see 722022 and 746012 in the debug level logs. However, unless I am mistaken,you should be able to change logs 746012 and 734003 to informational using the same command you are using for those other messages. You might try this:</P><P></P><P>logging message 746012 informational</P><P>logging message 734003 informational</P><P></P><P>Thanks</P><P>Joey</P></BODY></HTML> Fri, 02 Mar 2012 19:07:39 GMT johuggin 2012-03-02T19:07:39Z https://community.cisco.com/t5/network-security/asa-vpn-logging-issue/m-p/1938260#M458578 <P>Hello experts,</P><P>I have upgraded my ASA5540 form 8.2(2) to 8.4(2) and I have run into this logging issue.</P><P>previously I was logging the message ID: 713906 and could get this information:</P><P>group name, public address, assigned local address, username which identifies all the elements of a tunnel establishment.</P><P></P><P>As I upgraded to 8.4(2) I have lost this logging capability. I have tried to use different logging message ID alternatives like 722022, 722051 without any luck. I configured the message IDs and just they are not being logged. here is my config:</P><P></P><P>logging enable</P><P>logging facility 22</P><P>logging queue 1024</P><P>logging device-id hostname</P><P>logging buffered 10000000</P><P>logging message 722051 level debugging</P><P>logging message 713906 level debugging</P><P>logging message 713050 level debugging</P><P>logging message 715053 level debugging</P><P>logging message 715019 level debugging</P><P>logging message 713906 level debugging</P><P>logging message 713184 level debugging</P><P>logging message 113019 level debugging</P><P>logging message 113004 level debugging</P><P>logging message 113005 level debugging</P><P>logging message 713052 level debugging</P><P>logging message 106015 level debugging</P><P>logging message 302013 level debugging</P><P>logging message 302016 level debugging</P><P>logging message 302014 level debugging</P><P>logging message 750006 level debugging</P><P>logging message 722022 level debugging</P><P>logging message 737026 level debugging</P><P></P><P>I see lots of lines being logged for connection etablishment, but not the above logs which I am interested in. </P><P></P><P>I am interested to have at least 'username, local ip address, at the time the session is established all together in one line. I can see many lines for 302013, 302014, 302016 for different connections, but I am more intereseted in the start of the session.</P><P></P><P>And please note I am using pure ipsec both IKEV1 and IKEV2 with cisco vpn client as well as cisco anyconnect. I am NOT using ssl vpn.</P><P></P><P>Any help would be appreciated.</P><P></P><P></P><P>Thank you,</P><P>Razi</P> Mon, 11 Mar 2019 22:37:33 GMT https://community.cisco.com/t5/network-security/asa-vpn-logging-issue/m-p/1938260#M458578 rdianat 2019-03-11T22:37:33Z https://community.cisco.com/t5/network-security/asa-vpn-logging-issue/m-p/1938261#M458579 <HTML><HEAD></HEAD><BODY><P>Hello Razi,</P><P></P><P>Are you seeing any debug level logs? What are the level of logs which you are seeing? Can you give us an output of a <STRONG>'show logging messsage</STRONG> <STRONG>722022'</STRONG>?</P><P></P><P>Thanks!</P></BODY></HTML> Thu, 01 Mar 2012 18:49:37 GMT https://community.cisco.com/t5/network-security/asa-vpn-logging-issue/m-p/1938261#M458579 johuggin 2012-03-01T18:49:37Z https://community.cisco.com/t5/network-security/asa-vpn-logging-issue/m-p/1938262#M458580 <HTML><HEAD></HEAD><BODY><P> Yes, I see the debug level logs but nothing for 722022.</P><P>tst-vpn(config)# sh logg mess 722022</P><P>syslog 722022: default-level informational, current-level debugging (enabled)</P><P></P><P>Now I found the message ID 746012 and 734003 could be an acceptable solution, but the problem is for these two messages to be logged I have to enable logging buffered debugging". When I enable buffered debug logging, the buffer gets full immediately and I get lots of undesired logs. Is there any other message ID which can work in informational (level 6) and give me the same information as in 746012 or 722022?</P><P></P><P>Thanks,</P><P>Razi</P></BODY></HTML> Thu, 01 Mar 2012 20:59:42 GMT https://community.cisco.com/t5/network-security/asa-vpn-logging-issue/m-p/1938262#M458580 rdianat 2012-03-01T20:59:42Z https://community.cisco.com/t5/network-security/asa-vpn-logging-issue/m-p/1938263#M458581 <HTML><HEAD></HEAD><BODY><P>Razi,</P><P></P><P>I'm not sure why you can't see 722022 and 746012 in the debug level logs. However, unless I am mistaken,you should be able to change logs 746012 and 734003 to informational using the same command you are using for those other messages. You might try this:</P><P></P><P>logging message 746012 informational</P><P>logging message 734003 informational</P><P></P><P>Thanks</P><P>Joey</P></BODY></HTML> Fri, 02 Mar 2012 19:07:39 GMT https://community.cisco.com/t5/network-security/asa-vpn-logging-issue/m-p/1938263#M458581 johuggin 2012-03-02T19:07:39Z https://community.cisco.com/t5/network-security/asa-vpn-logging-issue/m-p/1938264#M458582 <HTML><HEAD></HEAD><BODY><P> Joey,</P><P>I CAN see 746012, but only if I have enabled debug logging " logging buffered debugging"</P><P></P><P>I did the commands you have mentioned:</P><P></P><P>logging message 746012 informational</P><P>logging message 734003 informational</P><P></P><P>by doing this I can not see these messages, but if I do "logging buffered debugging" then I can see these messages. if a message is generated in debug level, we can not change it to informational level by "informational" keyword. This is what I thought and that is what I see after configuration.</P><P></P><P>Any other thought?</P><P></P><P>Thanks,</P><P>Razi</P></BODY></HTML> Fri, 02 Mar 2012 20:21:13 GMT https://community.cisco.com/t5/network-security/asa-vpn-logging-issue/m-p/1938264#M458582 rdianat 2012-03-02T20:21:13Z https://community.cisco.com/t5/network-security/asa-vpn-logging-issue/m-p/1938265#M458583 <HTML><HEAD></HEAD><BODY><P>There&nbsp;are&nbsp;multiple&nbsp;issues&nbsp;in&nbsp;this.</P><P></P><P>1.&nbsp;The&nbsp;logs&nbsp;don't&nbsp;contain&nbsp;all&nbsp;the&nbsp;required&nbsp;information.</P><P>2.&nbsp;There&nbsp;are&nbsp;multiple&nbsp;logs&nbsp;with&nbsp;information&nbsp;of&nbsp;interest.</P><P>3.&nbsp;The&nbsp;same&nbsp;log&nbsp;appears&nbsp;more&nbsp;then&nbsp;once&nbsp;at&nbsp;the&nbsp;same&nbsp;time.</P><P></P><P>Filed&nbsp;a&nbsp;bug&nbsp;to&nbsp;resolve&nbsp;the&nbsp;same&nbsp;log&nbsp;appearing&nbsp;twice.&nbsp;The&nbsp;bug&nbsp;ID&nbsp;is&nbsp;:&nbsp;CSCtz01680.&nbsp;The&nbsp;bug&nbsp;is&nbsp;resolved&nbsp;and&nbsp;needs&nbsp;to&nbsp;be&nbsp;incorporated&nbsp;in&nbsp;one&nbsp;of&nbsp;the&nbsp;future&nbsp;releases.</P><P></P><P>Filed&nbsp;an&nbsp;enhancement&nbsp;request&nbsp;CSCtz01714&nbsp;to&nbsp;resolve&nbsp;the&nbsp;logging&nbsp;information&nbsp;issue.</P></BODY></HTML> Fri, 27 Apr 2012 16:55:50 GMT https://community.cisco.com/t5/network-security/asa-vpn-logging-issue/m-p/1938265#M458583 Kamal Malhotra 2012-04-27T16:55:50Z