12-11-2015 11:52 AM - edited 03-12-2019 12:01 AM
I'm looking for a good list of debugs to enable for both ASAs and IOS (ZBF) firewalls for logging to a syslog. We are trying to setup some basic log archiving for clients to be able to have something if a security event were to happen.
Thanks!
12-13-2015 12:24 PM
Hi mloraditch,
It would depend of which feature you want to debug exactly, if you are looking something general but detailed you can enabled the debugs at level 6.
Find below the logging configuration for your devices:
ASA
http://www.cisco.com/c/en/us/td/docs/security/asa/asa91/configuration/general/asa_91_general_config/monitor_syslog.html
IOS
http://www.cisco.com/c/en/us/td/docs/security/fwsm/fwsm31/system/message/fwsm_log/logconf.html
Hope it helps
-Randy-
12-13-2015 07:12 PM
Personally, I would start logging a certain level and than cul it down.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Log in to Community
