02-26-2016 07:44 AM - edited 03-12-2019 12:24 AM
I have a cisco asa and I have set up a log trap to email me when certain events are triggered, but I never get the email. I setup the ASDM logging to be the same trigger as my email and I see events there but the email is never sent.
I have configured the email smtp settings as well as set my email addresses for from and two for these but nothing ever happens. Anyone have a clue why the email part doesn't work?
Thanks,
Stacey Alden
02-26-2016 02:35 PM
I'm assuming you are using something like "logging mail" can you share your configuration?
Can you check if ESMTP and SMTP Inspection are enabled and try removing them.
Regards.
Rolando A. Valenzuela.
02-26-2016 07:18 PM
Hi Stacey,
Make sure you have enabled the SMTP servers on the ASA.
You can check this link for further info:
http://www.cisco.com/c/en/us/support/docs/security/pix-500-series-security-appliances/63884-pix70-syslog.html#maintask1
Regards,
Aditya
Please rate helpful posts.
03-01-2016 05:50 PM
Hi Stacey,
You can try reducing the level of logging on the ASA.
I am not sure what is the logging level you are using for trapping the
Regards,
Aditya
Please rate helpful posts.
02-27-2016 12:33 AM
Assuming you have configured the ASA logging correctly, the issue would be on the SMTP server. Make sure the mail is not being blocked by spam filter.
--
Please remember to select a correct answer and rate helpful posts
03-01-2016 11:30 AM
I was able to get the email part working but only after I cleared the buffer out. Is there a way to prevent the buffer from fully filling so the emails keep coming out?
03-01-2016 10:09 PM
The ASA should overwrite older logs.
could you issue the command show run all logging.
--
Please remember to select a correct answer and rate helpful posts
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide