Hi all,
Previously I was using PIX 4.2 with WT FWS v3.1d to generate usage graphs for various protocols such as HTTP, E-mail, FTP, etc.
Ever since we switch over to the new PIX running on 6.2. The reporting tool is not able to generate the reports correctly. Basically, it just shows graphs for telnet and 'others'. It had omitted out E-mail, FTP and HTTP which is oftenly used to monitor the usage trend.
Had anyone encounter it or does anyone have a remedy to it? Below is the logging setup on the new PIX 6.2. Not much different from the old box except the logging facility was change to 23 yesterday.
###
PixFirewall# sh logging
Syslog logging: enabled
Facility: 23
Timestamp logging: enabled
Standby logging: disabled
Console logging: disabled
Monitor logging: disabled
Buffer logging: level emergencies, 0 messages logged
Trap logging: level debugging, 17553528 messages logged
Logging to inside 10.10.10.10
History logging: disabled
PixFirewall#
###
As for the syslog server, I'm using the one that comes with the WebTrend firewall. It is still receiving a lot of logs from the PIX. The log file size per day is still roughly the same as before.
Appreciate if anyone out there is able to point out the error.
Ps: The WebTrend website shows that their FWS supports PIX 6.X.
Regards,
--
Tan Tshun Kiat (Mr)
Systems Administrator (Unix)
Information Technology Group
Institute For Communications Research