03-05-2015 07:46 PM - edited 03-10-2019 06:20 AM
Hi,
How can I collect IPS logs from ASA? My firewall is ASA 5515x, 9.1(5) with IPS module of version 7.1(4)E4. Please let me know the commands to see the IPS logs, also how can I monitor these logs ?
Regards,
Ejaz
Solved! Go to Solution.
03-06-2015 04:56 AM
You need to use either:
a. IPS Device Manager (basically ASDM pointed at the IPS address vs. the ASA address and used for real time log viewing and configuraiton)
b. IPS Manager Express (retains logs even when GUI not active, can manage several IPS's), or
c. Cisco Security Manager.
The first two are free tools for single or small IPS installations and the third is a licensed enterprise-scale product.
03-06-2015 04:56 AM
You need to use either:
a. IPS Device Manager (basically ASDM pointed at the IPS address vs. the ASA address and used for real time log viewing and configuraiton)
b. IPS Manager Express (retains logs even when GUI not active, can manage several IPS's), or
c. Cisco Security Manager.
The first two are free tools for single or small IPS installations and the third is a licensed enterprise-scale product.
03-06-2015 05:09 AM
Thanks a lot Marvin for your valuable reply.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide