Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
478
Views
0
Helpful
2
Replies

syslog

TECH-JEFF
Level 1
Level 1

‎03-23-2015 10:55 PM - edited ‎02-21-2020 05:25 AM

Hi, just want to ask if I did the right command. I would like to set the logging of our router's logs into a syslog server which has a Windows operating system. I used the command "logging ip or hostname" 

Next is I'm not sure if logging is pushing thru. BTW, I'm using Splunk for the log server.

Thanks

Jeff

Jefferson Co
0 Helpful
2 Replies 2

Marvin Rhoads
Hall of Fame
Hall of Fame

‎03-24-2015 05:25 AM

We normally specify the logging server IP address but you may use the hostname if you really want. It's a waste of device resources to resolve the hostname every time It needs to send a log event. 

You can do a quick packet capture on your server filtering on the source IP address of your device and looking for the UDP port 514 packets to see them arriving. 

0 Helpful

Tushar Bangia
Level 1
Level 1

‎03-25-2015 09:12 PM

Please validate if you have 'logging trap' configured, also you can refer below link for same:

 

http://www.cisco.com/c/en/us/td/docs/security/asa/asa91/configuration/general/asa_91_general_config/monitor_syslog.html

 

Alternatively, please share the logging configs for ASA. We will review it for you.

 

Regards,

 

Tushar Bangia

 

Note - Please do rate the post if you find it helpful!!

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card