Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
497
Views
0
Helpful
2
Replies

SYSLOG_PIX

amancuso
Level 1
Level 1

‎03-12-2004 08:47 PM - edited ‎02-20-2020 11:17 PM

Two questions:

What is the best practice for PIX messages to a syslog server. I have been exporting to a SQL database. However the amount of information is tremendous. What would be the best way to reduce the amount of information, yet get useful info.

Is there a way to configure the PIX to have various levels of priviledge and to monitor what a user has changed in the configuration.

Thank you

0 Helpful
2 Replies 2

jon-sills
Level 1
Level 1

‎03-12-2004 09:15 PM

You can filter out unwanted syslog messages using the no logging message [syslog id #] Or you can change your logging level to reduce your logging. I have found the no logging message command usefull in cases where I am required to log certain messages that I can only get a debug level, and don't want all the other stuff you log at that level.

You can adjust user privileges to assign varius levels either from the command line, or from the Pix device manager. Unless your a typing freak, it's more easily done from PDM.

Config change monitoring is easily done by implementing a radius or tacacs server and AAA, or by buying CW2000 VMS and managing the PIX's with the firewall mc. This would also take care of your syslog management problems at the same time.

0 Helpful

amancuso
Level 1
Level 1
In response to jon-sills

‎03-15-2004 06:15 AM

Are there ant resources available to determine which log messages should be filtered out. Do you have any recommendations of what to include/exclude?

Thanks in advance

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card