Solved: sh log for critical only and configuration question

jacob6000 · ‎11-25-2014

Two questions:

1) How can I show log messages for critical errors only?

2) How can I configure logging so that it show me the level (info, critical, etc) in the message?

As an example, these messages don't show the level they are generated for:

Nov 25 17:56:09.875: %FW-6-DROP_PKT: Dropping tcp session 192.168.6.114:53201 23.205.120.146:443 on zone-pair IN-TO-OUT class IN-TO-OUT-ALLOW-ALL-CLASS due to Stray Segment with ip ident 0
Nov 25 17:56:56.767: %FW-6-DROP_PKT: Dropping tcp session 24.206.55.1:53325 12.129.199.106:80 due to RST inside current window with ip ident 0
Nov 25 17:57:49.387: %FW-6-DROP_PKT: Dropping tcp session 192.168.6.114:53265 173.252.101.48:443 on zone-pair IN-TO-OUT class IN-TO-OUT-ALLOW-ALL-CLASS due to Stray Segment with ip ident 0
Nov 25 17:58:00.442: %TRACKING-5-STATE: 80 ip sla 80 state Down->Up

Thank you,

Marvin Rhoads · ‎11-25-2014

1. "logging trap 2" or "logging console 2" for syslog hosts and console logging respectively. Reference.

2. It's aleady there - see the number in the section of the syslog message following the % sign. e.g., "%FW-6-DROP_PKT" is a level 6 (informational) message

View solution in original post

Marvin Rhoads · ‎11-25-2014

1. "logging trap 2" or "logging console 2" for syslog hosts and console logging respectively. Reference.

2. It's aleady there - see the number in the section of the syslog message following the % sign. e.g., "%FW-6-DROP_PKT" is a level 6 (informational) message