Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
470
Views
0
Helpful
1
Replies

ASA logging to Remote server

chrisvanwyk
Level 1
Level 1

‎06-13-2011 02:17 AM

Hi

The current log file is exported to an external server.

Is it possible for the ASA to do a reverse lookup or WINS/DNS lookup to determine who is using an IP via VPN. Currently the DHCP pool sits on the FW. I want to be able to see in the log file which machine was using which IP at a certain time.

Regards

Chris

Labels:
0 Helpful
1 Reply 1

Jennifer Halim
Cisco Employee
Cisco Employee

‎06-13-2011 04:57 AM

No, the ASA is not capable of doing reverse lookup and determine who is using an IP because the DHCP pool is basically a pool of ip address, and it is not a static IP Address allocated to the machine. Therefore, even if the ASA is capable of doing a DNS lookup, and since the DHCP pool is just a random address which is assigned when user connects in, there will be no dynamic DNS lookup because ASA does not have a list of all the machines' name with its assigned IP.

In summary, ASA does not have the capability of performing reverse lookup of the machine name for those connected via VPN.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents