https://community.cisco.com/t5/network-security/secure-logging/m-p/1134531#M914125 <HTML><HEAD></HEAD><BODY><P>Hi Gaurang,</P><P></P><P>The reason this isn't working is that Kiwi Syslog Daemon does not support SSL/TLS connections. The 'secure' keyword requires that the syslog server support SSL/TLS, so you'll need to switch to a different server.</P><P></P><P>Hope that helps.</P><P></P><P>-Mike</P></BODY></HTML> Thu, 28 Aug 2008 20:41:16 GMT robertson.michael 2008-08-28T20:41:16Z https://community.cisco.com/t5/network-security/secure-logging/m-p/1134528#M914122 <P>I see that starting from version 8.x of ASA, an optional word "secure" has been added with logging host command. That is.,</P><P></P><P>logging host &lt;int&gt; &lt;ip&gt; &lt;tcp/port&gt; secure,</P><P></P><P>But has any one got it working, without using Cisco MARS. I am trying this with other end being KiwiSyslog listening on TCP and having secure tunnel using stunnel but not havening luck.</P><P></P><P>Gaurang.</P> Mon, 11 Mar 2019 13:34:31 GMT https://community.cisco.com/t5/network-security/secure-logging/m-p/1134528#M914122 gaurang_pandya 2019-03-11T13:34:31Z https://community.cisco.com/t5/network-security/secure-logging/m-p/1134529#M914123 <HTML><HEAD></HEAD><BODY><P>Is normal syslog working through your kiwi server ? Are you seeing any rejects from the server or the firewall in the log messages ? There is no explicit statement saying the secure option doesnt work with normal syslog servers ! Not much of information too on Cisco site ! It just works with TCP protocol ... </P><P></P><P>Raj</P></BODY></HTML> Fri, 22 Aug 2008 09:56:58 GMT https://community.cisco.com/t5/network-security/secure-logging/m-p/1134529#M914123 sachinraja 2008-08-22T09:56:58Z https://community.cisco.com/t5/network-security/secure-logging/m-p/1134530#M914124 <HTML><HEAD></HEAD><BODY><P>Yes it does work normally with Kiwi server, no info available not just with Cisco but anywhere else through googling. I dont think any one has got it working yet.</P></BODY></HTML> Sat, 23 Aug 2008 03:52:00 GMT https://community.cisco.com/t5/network-security/secure-logging/m-p/1134530#M914124 gaurang_pandya 2008-08-23T03:52:00Z https://community.cisco.com/t5/network-security/secure-logging/m-p/1134531#M914125 <HTML><HEAD></HEAD><BODY><P>Hi Gaurang,</P><P></P><P>The reason this isn't working is that Kiwi Syslog Daemon does not support SSL/TLS connections. The 'secure' keyword requires that the syslog server support SSL/TLS, so you'll need to switch to a different server.</P><P></P><P>Hope that helps.</P><P></P><P>-Mike</P></BODY></HTML> Thu, 28 Aug 2008 20:41:16 GMT https://community.cisco.com/t5/network-security/secure-logging/m-p/1134531#M914125 robertson.michael 2008-08-28T20:41:16Z https://community.cisco.com/t5/network-security/secure-logging/m-p/1134532#M914126 <HTML><HEAD></HEAD><BODY><P>if you read my first post, i have clearly said..for secure connection i am using stunnel, which then forwards unencrypted packets to KiwiSyslog listening in TCP port.</P></BODY></HTML> Fri, 29 Aug 2008 09:50:16 GMT https://community.cisco.com/t5/network-security/secure-logging/m-p/1134532#M914126 gaurang_pandya 2008-08-29T09:50:16Z https://community.cisco.com/t5/network-security/secure-logging/m-p/1134533#M914127 <HTML><HEAD></HEAD><BODY><P>in the logging statement on the ASA which port have u mentioned? <TCP></TCP></P><P></P><P>Is the same port listening on the stunnel application? (this is the accept port in the stunnel.conf)</P><P></P><P>If you have Hucaby's ASA book, he has detailed instructions to set this up, its not so simple. If you need further help let me know, I can summarize the steps for you.</P><P></P><P>Regards</P><P></P><P>Farrukh</P></BODY></HTML> Fri, 29 Aug 2008 13:12:49 GMT https://community.cisco.com/t5/network-security/secure-logging/m-p/1134533#M914127 Farrukh Haroon 2008-08-29T13:12:49Z https://community.cisco.com/t5/network-security/secure-logging/m-p/1134534#M914128 <HTML><HEAD></HEAD><BODY><P>yes, i have done right stunnel config, and right tcp/port given in ASA, it would be great if you can summarize steps or point me to url that explains this in detail. </P><P></P><P>Thanks,</P><P></P><P>Gaurang.</P></BODY></HTML> Mon, 08 Sep 2008 16:14:18 GMT https://community.cisco.com/t5/network-security/secure-logging/m-p/1134534#M914128 gaurang_pandya 2008-09-08T16:14:18Z https://community.cisco.com/t5/network-security/secure-logging/m-p/1134535#M914130 <HTML><HEAD></HEAD><BODY><P>Sorry for the late reply. </P><P></P><P>Please find attached presentation from a Cisco TAC training to configure this.</P><P></P><P>Regards</P><P></P><P>Farrukh</P><P></P><P> </P><P></P></BODY></HTML> Tue, 16 Sep 2008 18:56:40 GMT https://community.cisco.com/t5/network-security/secure-logging/m-p/1134535#M914130 Farrukh Haroon 2008-09-16T18:56:40Z