Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi All,I would like to know if there is any best practice document for Firewall logging. This would include1. What level of logging is ideal2. If a log is stored in a logging server, how long is it best to store the logs and retain the logs by a back...
Hi All,I would like to know if there is any best practice document for Firewall logging. This would include1. What level of logging is ideal2. If a log is stored in a logging server, how long is it best to store the logs and retain the logs by a back...
Hello Friends,We have 2 ASA 5520 in Active - Standby failover setup (ASA1 = Primary, ASA2 = Secondary). Since these two FW's are in other branch office, we have an IPSec connectivity to the FW for monitoring. I have the following question.1. We have ...
Hi Champs,I would like to know if there is any way to block traffic sourced from an ASA 5540. Basically i am seeing some snnmp authentication failures and the ip address in the message is sourced from ASA. The irony is that i do not have any snmp con...
Hi Champs,I would like to know if there is any way to block traffic sourced from an ASA 5540. Basically i am seeing some snnmp authentication failures and the ip address in the message is sourced from ASA. The irony is that i do not have any snmp con...
Hi Ganesh/ Giuseppe,Thanks for your replies. First of all, giving the complete command "show running-config" gives the same output as earlier.Ganesh, can you tell me if there is any minimum priviledge level required to view the "show running-config" ...
Hi Collin,Thanks for the reply, however PIX does not seem to have this sort of command. Below is the outputPIXFW(config)# service timestamps log datetime msecUsage: service {resetinbound|resetoutside}PIXFW(Config)(config)#We do have ASA in other loc...
Hi Juan-ruiz,Thanks for your prompt response.I will have to speak to the backend team if the script has to be modified. Before that i would need a confirmation that going directly into the priviledge mode is not possible and any documentation support...
