Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
4757
Views
5
Helpful
3
Replies

logging device-id ipaddress

Go to solution
mahesh18
Level 6
Level 6

‎02-08-2014 09:40 AM - edited ‎03-11-2019 08:42 PM

Hi everyone,

If we config ASA with command below

logging host inside 192.168.1.50

Above command will send all log messages to server 192.168.1.50 right?

If we also config command below

logging device-id ipaddress inside

What does above command do?

will it make any difference to logging to server?

Regards

MAhesh

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Marius Gunnerud
VIP
VIP

‎02-08-2014 10:29 AM

Hi Mahesh,

The device-ide keyword is used to include a device ID in a non-EMBLEM format syslog message.  EMBLEM is a format that is primarily used with CiscoWorks and is only available for UDP syslog servers.

logging device-id ipaddress inside

This command will send syslog messages to the configured syslog server with the IP address of the inside interface as the device ID.  This will not affect to the syslog server you are sending logs to, just what device ID it sends.  Keep in mind that this device id will override any interface IP you are sourcing the syslog message from. 

So lets say you configure logging host DMZ 192.168.1.50  and then you configure logging device-id ipaddress inside  All syslog messages will be sent to 192.168.1.50 but will show up with an ID (or source ID) of the inside interface IP.

You can also configure the device id to be the hostname of the ASA, a context name, or a custom string that you define yourself.

--
Please remember to rate and select a correct answer

--
Please remember to select a correct answer and rate helpful posts

View solution in original post

3 Replies 3

Go to solution
Marius Gunnerud
VIP
VIP

‎02-08-2014 10:29 AM

Hi Mahesh,

The device-ide keyword is used to include a device ID in a non-EMBLEM format syslog message.  EMBLEM is a format that is primarily used with CiscoWorks and is only available for UDP syslog servers.

logging device-id ipaddress inside

This command will send syslog messages to the configured syslog server with the IP address of the inside interface as the device ID.  This will not affect to the syslog server you are sending logs to, just what device ID it sends.  Keep in mind that this device id will override any interface IP you are sourcing the syslog message from. 

So lets say you configure logging host DMZ 192.168.1.50  and then you configure logging device-id ipaddress inside  All syslog messages will be sent to 192.168.1.50 but will show up with an ID (or source ID) of the inside interface IP.

You can also configure the device id to be the hostname of the ASA, a context name, or a custom string that you define yourself.

--
Please remember to rate and select a correct answer

--
Please remember to select a correct answer and rate helpful posts

Go to solution
mahesh18
Level 6
Level 6
In response to Marius Gunnerud

‎02-10-2014 07:45 PM

Thanks Marius

Mahesh

0 Helpful

Go to solution
farazchakkungal
Level 1
Level 1
In response to Marius Gunnerud

‎04-02-2019 11:35 PM

Can we configure different device-id for different syslog server on the same ASA?

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card