Solved: Logging information

Lake · ‎12-21-2017

Hi Guys,

I have enable logging on our ASA5516 firewall and the logs are going to a syslog server. Below are the commands which I enabled:

logging buffer-size 1000000
logging monitor debugging
logging buffered informational
logging trap informational
logging asdm informational

Are these commands for logging to syslog server ok or do I need to modify it? I also noticed that information logging is being sent to the syslog server. I am thinking about removing it. Is that a good idea and if so which is the command from those above will remove it? Any help will be greatly appreciated.

Thanks,

Lake

andre.ortega · ‎12-21-2017

Hi Lake,

the command that is really being used to send the logs to the server is "logging trap informational".

Also you need to inform the syslog server's IP/Port:

logging host interface_name ip_address [tcp[/port] | udp[/port]] [format emblem]

The level of logs will depend on what you want to save.

View solution in original post

andre.ortega · ‎12-21-2017

Hi Lake,

the command that is really being used to send the logs to the server is "logging trap informational".

Also you need to inform the syslog server's IP/Port:

logging host interface_name ip_address [tcp[/port] | udp[/port]] [format emblem]

The level of logs will depend on what you want to save.

Lake · ‎12-28-2017

I would like to thanks for all the help.

Regards,

Lake