07-27-2011 06:02 AM - edited 03-11-2019 02:04 PM
Hi all,
I am trying to troubleshoot a site to site VPN tunnel, I do not have a syslog server . the question I have :
1) How can I check the event log on my firewall using the CLI
2) Also when I go to ASDM realtime log viewer and log buffer I can not see anything there .. how can I enable this please
3) any recommended syslog server on windows.
Any help wil me much appreciated.
Many Thanks
Rabih
07-27-2011 06:17 AM
Hi,
1) & 2) How can I check the event log on my firewall using the CLI & ASDM
logging enable
logging timestamp
logging buffer-size < > --> optional
logging buffered < specify the level - ex: errors/warnings, debugging, informational etc)
logging asdm
below link gives you more detailed info.
http://www.cisco.com/en/US/docs/security/asa/asa72/system/message/logconf.html
Once configured, issue 'Show logging' on ASA CLI to check the events.
3) any recommended syslog server on windows.
Whats your budget? There are Few free basic syslog servers available. Google for it.
hth
MS
07-27-2011 09:03 AM
Kiwi Syslog server from Solarwinds is free
From the ASDM, you can just click 'Enable Logging' and you'll start to see the logs in the window.
In addition to following what MS said, if you do the following command you'll be able to get an idea of why your L2L tunnel is failing at phase 1. The 127 is the debug level and should show you enough information to assist with your troubleshooting
debug crypto isakmp 127
Good luck
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide