Solved: ASA Context Failover Alerting

DanielBostock · ‎07-05-2020

Hi,

I am just wondering if it is possible to monitor the failover of an ASA in multiple context mode, and even more finely tune that monitoring to include specific contexts failing over to a standby ASA? I am thinking syslog is probably the most likely source for this event alerting, but I am having a hard time getting through the documentation and googling to find out specifically how to do this.

Thanks appreciate any and all help in advance.

Thanks,

Daniel.

Marvin Rhoads · ‎07-05-2020

Yes you could trigger an action in your NMS based on receipt of specific syslog messages. There are quite a few related to failover. For instance:

https://www.cisco.com/c/en/us/td/docs/security/asa/syslog/b_syslog/syslogs1.html#con_8584490

The most likely ones you would see are 104001 and 104002.

View solution in original post

Marvin Rhoads · ‎07-05-2020

Yes you could trigger an action in your NMS based on receipt of specific syslog messages. There are quite a few related to failover. For instance:

https://www.cisco.com/c/en/us/td/docs/security/asa/syslog/b_syslog/syslogs1.html#con_8584490

The most likely ones you would see are 104001 and 104002.

DanielBostock · ‎07-06-2020

@Marvin Rhoads- Thanks for the information, I have reviewed that link and have ensured the logging is now turned on (well not filtered!) and is going the correct NMS and this has resolved the issue.

Thanks,

Daniel.