Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
230
Views
0
Helpful
1
Replies

Logging wireless network traffic on an ASA 5510

Wouter Platteeuw
Level 1
Level 1

‎09-03-2014 05:01 AM - edited ‎03-11-2019 09:42 PM

Dear Cisco Experts :),


We have a wireless network for our guests. This network uses the firewall (an asa 5510) as gateway. Now we are looking for a way to log the following information

Mac Address  or IP client - Time/Date - Information (Url/ip/protocol logging)

Can this be done with an ASA? (i think so using netflow but i dont really understand how this work) Is there a way to safe to the log files to an external server - and do i need software to view to log files (if so does anyone know any software)?

I hope someone can give me a push in the right direction. Thanks in advance.

Sincerly,

Wouter

Labels:
0 Helpful
1 Reply 1

Karsten Iwen
VIP
VIP

‎09-03-2014 06:04 AM

For that to achieve you need a couple of steps:

  1. Enable http-inspection in your service-policy. With that the ASA will generate log-message 304001 which includes the accessed URL. But this will only work for HTTP, not for HTTPS as the ASA doesn't see the URL.
  2. Configure a syslog-server in your internal network. There are millions of servers available. If tail and grep are your preferred tool, then syslog-ng or rsyslog are good servers. There are also commercial servers available from many vendors. Many have graphical user interfaces.
  3. Send log to the configured syslog-server.
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card