Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
384
Views
0
Helpful
2
Replies

Logging on FWSM

harinirina
Level 1
Level 1

‎01-23-2009 02:01 PM - edited ‎03-11-2019 07:41 AM

Hi all,

We have multiple context and need to send all Context log to one syslog server.

For the context on the same network as syslog server, we can collecte log without problem.

For all other contexts, no log reaches the server.

We have put "logging host outside IP_syslog".

From ASDM, we can see log, but we can't see any traffic between the syslog server and the context.

is it possible to put syslog server on the outside interface of a context on FSWM ?

Labels:
0 Helpful
2 Replies 2

george_daly
Level 1
Level 1

‎01-29-2009 03:52 AM

Hi,

Yes you can log to syslog through the outside interface (on all FWSM versions I've used).

Is there a firewall sitting in front of the syslog server that you need to permit the UDP 514 traffic through?

I take it tcpdump on the syslog server doesn't show packets getting there?

Cheers,

George

0 Helpful

harinirina
Level 1
Level 1
In response to george_daly

‎01-30-2009 01:41 AM

Hi,

We tried with 2 syslog servers, it works without problem on one of the server. On the second server, sometimes, we can't even ping it from the firewall.

It works after clearing xlate.

We often meet this problem, how can we avoid this problem to happen again?

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card