logging of FWSM context logs to two diffrent zone SYSLOG SERVER

pardeepsinghgill · ‎10-23-2011

Hello Sat Shri Akal,

Can any one help me about logging of FWSM context logs to two diffrent zone SYSLOG SERVER and SYSLOG Collector

in CSM 3.2.2. I am able to have logs from Admin context but not from my other context of FWSM. Otherwise that context is sending syslogs to ONE syslog server in similsr vlan,but why that perticular context is not able to log ay syslog collector of CSM which is having logs from admin context. Please help me in this case.

regards

Kureli Sankar · ‎10-30-2011

Pradeep,

All contexts should be able to reach the CSM server's IP address just like the admin context.

The individual contexts should be configured to send logs to the CSM server's IP address.

From CSM go under each context and add management IP address for the particular context.

Once the above is done you will see logs from all the contexts under CSM.

-Kureli

slee · ‎06-03-2013

Can you set up 2 different SYSLOG servers, one on the inside and the other on a different interface?

We have this set up and the syslog traffic is not reaching the syslog server that is not on the inside.

The server is directly attached to the firewall off of another interface.

-Scott

Julio Carvajal · ‎06-03-2013

Hello,

Yes, you should,

Check if there is basic connectivity,

Can you ping that server?

If you do a capture on the FWSM, do you see the packets leaving?

Regards

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC