Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
318
Views
0
Helpful
2
Replies

Logging VPN users

ciscors
Level 1
Level 1

‎02-07-2006 07:49 AM

Is there a way to log VPN RAS connections on PIX? I know a high level of syslog would show that but that'll require going through tons of logs. Any other graceful method do this except investing in a radius server?

Labels:
0 Helpful
2 Replies 2

Patrick Laidlaw
Level 4
Level 4

‎02-07-2006 11:10 AM

Hello,

You can use a syslog server like Kiwi syslog which has the ability to filter out entrys very easily.

Other than a Radius server I can't think of a way to specifically send a syslog message just for user log ins.

As of 7.0 I'm not sure if it has the ability to specify snmp traps for user log ins.

Patrick

Patrick.

0 Helpful

ciscors
Level 1
Level 1
In response to Patrick Laidlaw

‎02-07-2006 02:13 PM

Doesn't look like. The traps haven't changed much from 6.x to 7.x. The below is taken from a 7.x config guide:

The security appliance sends the following core SNMP traps:

• authentication—An SNMP request fails because the NMS did

authenticate with the correct community string.

• linkup—An interface has transitioned to the “up” state.

• linkdown—An interface is down, for example, if you removed

nameif command.

• coldstart—The security appliance is running after a reload.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents