Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1680
Views
0
Helpful
1
Replies

Syslogs thru a Pix

robert.mcclain
Level 1
Level 1

‎10-26-2001 11:50 AM - edited ‎02-20-2020 09:53 PM

I have a 3600 router on one side of a Pix firewall, tring to send the syslog file to a sensor on the other side of the firewall. The sensor is on a network that is unroutable and needs a spoof address on the Pix.

I can see the router logging access list violations but nothing is being sent to the sensor. I have the spoof address as the sensor's data source, I have also tried the actual ip of the router. The Pix is configured to allow the traffic from one to the other.

The router logging is set on, and is logging to the spoof address. The data source of the Sensor is also the spoof address. I am currently runing the latest updates to the sensor and Director. Am I missing something?

0 Helpful
1 Reply 1

j-leadford
Level 1
Level 1

‎10-29-2001 12:58 PM

You said you have the "PIX configured to allow the traffic from one to the other.", how is this configured? Are you using a static and conduit or an access-list? If your sending your syslog through the PIX you will need a static and conduit entry on the PIX to pass the traffic from the outside interface to the interface that the Sensor is on.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card