Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1457
Views
5
Helpful
3
Replies

Cisco ASA error deleted rules

Go to solution
allwynmascar
Community Member

‎10-11-2017 11:53 PM - edited ‎02-21-2020 06:28 AM

HI 

I have a situation where it seems some error appeared on the fw and deleted rules.

 

They are not sure what logs they have right now. 

 

In any case what logging levels can track this and how can I go ahead troubleshooting? 

 

In this case config debug is recommended, can someone give me a way forward to work with it as I am not very familiar with ASAs. 

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame
In response to allwynmascar

‎10-12-2017 01:40 AM

ASA logging options include local console, local buffer, ASDM buffer, SNMP trap and remote syslog targets. If none of them are enabled then you cannot see any details from the ASA device.

 

To check the configured logging options, use the following command:

 

show run logging 

View solution in original post

3 Replies 3

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎10-12-2017 01:26 AM

Bet practice is to use external authentication to a AAA server like ACS or ISE. Then the AAA server logs show you who logged in and when.

 

You should also setup configuration management using something like RANCID (free tool) or SolarWinds NCM or Cisco Prime Infrastructure (licensed products). With those you have external copies of the previous configuration and can always revert to it.

0 Helpful

Go to solution
allwynmascar
Community Member
In response to Marvin Rhoads

‎10-12-2017 01:28 AM

Thanks for the reply.

 

But lets say now that no logging is enabled can I see any details from the cisco ASA device?

 

Also how can I check what logging options have been configured on the firewall?

0 Helpful

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame
In response to allwynmascar

‎10-12-2017 01:40 AM

ASA logging options include local console, local buffer, ASDM buffer, SNMP trap and remote syslog targets. If none of them are enabled then you cannot see any details from the ASA device.

 

To check the configured logging options, use the following command:

 

show run logging 

Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card