02-06-2008 08:29 AM - edited 03-11-2019 04:59 AM
I inhereited this mess and our ASA 5510's are in route so plan to upgrade are already in place.In the meantime I have to some syslogging. our private network is 10.1.x.x our DMZ address is 10.254.x.x I have a permit ACL for ICMP and Syslogging, however the command I give to tell it to start logging :
pixfirewall(config)# logging host inside 10.1.2.10 udp 514
is returned with this error:
Port out of range: 1025-65535
besides resolving this error is there any other configurations that need to implemented to make this work ? This is a PIX 506e
02-06-2008 08:50 AM
Don't specify the udp port
pixfirewall(config)# logging host inside 10.1.2.10
If you dont specify the default port is UDP 514
02-06-2008 08:55 AM
You don't need the UDP 514 since it's the default syslog port and protocol. If you wanted to send it on another port you would specify it and it needs to be in the range of 1025-65535. The only other thing you might want to review is the logging level of syslog.
logging trap debug [warning: can cause a ton of messages]
logging on
HTH
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide