Pix ver 7 Logging query!!
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-21-2006 05:10 AM - edited 02-21-2020 12:51 AM
Can anyone throw some light on the interaction between
1)ACE logging
and
2)Global logging trap
If i have logging trap warning and alos have log keyword in one of my ACE what will be interaction.Will one override the other
Pointers appreciated
- Labels:
-
Other Network Security Topics
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-21-2006 05:48 PM
Without any other options to the ACE log command, the ACe log (if it denies a connection) will issue a 106100 log message at the default level of 6 (informational). If you only have "logging trap" set to warning level (level 4) then you won't see these ACE log messages, just like you wouldn't see any other level 6 or 7 messages.
To have them sent to your syslog server you need to set trap level logging to 6.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-21-2006 06:03 PM
SO i understand there is no interaction between the two and that i would have to have global trap at 6 ...so then why would i have to do an ACE logging cos the global trap 6 would anyways send the same to destination syslog if configured.
In summary what is the benfit of ACE logging Vs global logging
Thanks any pointers appreciate
