Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
6289
Views
5
Helpful
3
Replies

VPN Connection Log Activity

Go to solution
dipak jaiswal
Level 1
Level 1

‎07-28-2011 08:18 AM - edited ‎03-11-2019 02:05 PM

Hello,

We have configured client to site vpn at one of our client site and it's running properly, but we are unable to monitor the vpn connection log. We have configured syslog server for the same. The user are authenticating from the local database of ASA. We have configured the following thing at ASA for VPN connection logging:

ASA#

logging enable

logging timestamp

logging standby

logging console informational

logging monitor informational

logging trap informational

logging history informational

logging asdm informational

logging facility 23

logging host INSIDE 172.21.15.10(Syslog server IP)

The asdm and syslog server are not capturing the log of VPN Connectin. The client want the following log information of VPN Connection.

1. VPN login and exit time.

2. VPN login username and password

3. If possible, what they have done after logging.

Please help me to solve this issue.

Thanks a lot for your support.

Regards

Dipak

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Anu M Chacko
Cisco Employee
Cisco Employee

‎07-28-2011 09:45 AM

Hi Dipak,

Enable the following:

logging class vpn buffered debugging //to log to the buffer
logging class vpn trap debugging //to log to a syslog server
logging class vpnc buffered debugging //logging for vpn client activities



Hope this helps!

Regards,
Anu

P.S. Please mark this question as resolved if it has been answered. Do rate 
helpful posts.

View solution in original post

3 Replies 3

Go to solution
Anu M Chacko
Cisco Employee
Cisco Employee

‎07-28-2011 09:45 AM

Hi Dipak,

Enable the following:

logging class vpn buffered debugging //to log to the buffer
logging class vpn trap debugging //to log to a syslog server
logging class vpnc buffered debugging //logging for vpn client activities



Hope this helps!

Regards,
Anu

P.S. Please mark this question as resolved if it has been answered. Do rate 
helpful posts.

Go to solution
dipak jaiswal
Level 1
Level 1
In response to Anu M Chacko

‎07-29-2011 01:28 AM

Hi,

Thanks a lot for your support. It's working now. I have some query which are mentioned below :

1. It's showing only the login time, but not the logout time.

2. If client is doing any activities, it's not showing at syslog server.

3. Suppose a client connect or logout via vpn, at the same time mail will be generated by ASA  to the concerned mail id that from this ip with user id and time mentioned in the maid id, has logged in or logged out. Is it possibe ?

Thanks a lot in advance.

Regards

Dipak

0 Helpful

Go to solution
mvsheik123
Level 7
Level 7
In response to dipak jaiswal

‎07-29-2011 01:31 PM

Hello,

Try if this helps.. When you enable 'logging buffered debugging'  - you can see all the logs with message ID#. Select the messages you want to get emails for and add the logging list...

logging list ASA_CRITICAL message <#> : Single message id

logging list ASA_CRITICAL message <# - #> Range of messages

logging trap ASA_CRITICAL

logging from-address ASA@companyname.com

logging recipient-address name@comapnyname.com

smtp-server

With the config I use on my ASA, I receive emails for any commands run on ASA and when the user (not the VPN user,

but the ASA logged in admin) logged out etc.

hth

MS

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card