Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
950
Views
0
Helpful
2
Replies

Firewall Syslog

Steven Williams
Level 4
Level 4

‎01-24-2019 10:26 AM - edited ‎02-21-2020 08:42 AM

Is there anyway to send certain logs from ASA to syslog, like to stop logging on a ACL or anything like that?

0 Helpful
2 Replies 2

Ilia Sanashvili
Level 1
Level 1

‎01-24-2019 11:02 AM

The easiest and simplest way it to use severity levels from 0 to 7. If you don't know them https://en.wikipedia.org/wiki/Syslog#Severity_level here is the table that shows it.

You can only send up to level 2 or 3, which you can do using logging trap 3 in a global config mode.

I personally never send firewall messages to syslog because it's so many and it's so endless that you can't just sit and stare at syslog 24/7. If you want to send really critical ones just send level 2 let's say.

Hope this is helpful

 

0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame

‎01-24-2019 11:25 PM

ASA can only filter messages by severity, or by log message class, or by individual log message.

 

here is the connfiguration guide for reference :

https://www.cisco.com/c/en/us/support/docs/security/pix-500-series-security-appliances/63884-config-asa-00.pdf

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card