Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
278
Views
4
Helpful
4
Replies

What is the logging command to log NAT S & D IP in ASA Firewall.

Tkass
Level 1
Level 1

‎05-09-2024 08:38 AM

What is the logging command to log NAT S & D IP in ASA Firewall if there is any?

 

4 Replies 4

tvotna
Spotlight
Spotlight

‎05-09-2024 08:43 AM

Connection creation syslogs, e.g. 302013 include both real and mapped source/destination IPs by default. E.g.

Error Message%ASA-6-302013: Built {inbound|outbound} [Probe] TCP connection_id for interface :real-address /real-port (mapped-address/mapped-port ) [(idfw_user )] to interface :real-address /real-port (mapped-address/mapped-port ) [(idfw_user )] [(user )]

 

MHM Cisco World
VIP
VIP

‎05-09-2024 09:12 AM - edited ‎05-09-2024 09:36 AM

Logging list toSyslog level critical 

Logging list toSyslog message 305013

This level 6 message for NAT for connection.

This not error message' but just for make you notify the conn add or remove from conn table' which you can use it to see NAT of IP.

MHM

Tkass
Level 1
Level 1

‎05-09-2024 09:21 AM

Thank you, If the NAT do its job as it configured, why would I have the Error message? can I still log NAT S & D IP address, if there is no Error message by using # logging message 302013?

 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card