cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
255
Views
0
Helpful
1
Replies
Highlighted
Beginner

VPN User accounting.

Hi,

I want to audit IPSec VPN users connecting to my ASA 5510 box. I need the following informations -

1. Time of connection and disconnection.

2, Username.

3. Public IP address.

4. Private IP address.

5. Details of the network resource usage by IPSec VPN client.

6. Services accesses by Users.

Please suggest if this kind of audit is possible with Cisco ASA or any other software.

Thanks and regards,

Pulkit Sharma

1 REPLY 1
Highlighted

VPN User accounting.

Pulkit,

For this type of information you need some sort of management environment where ALL your requirements  related to IPsec RA connections   can be collected and then audited  , I do not see any otherway to get this information unless you want to use plain syslog server and  filter VPN syslog IDs pertaining to VPN information and send it to syslog server and then look at hundreds of lines in  plain text logs..  not a fun thing to do..

You can google something like  Firewall management software, there are quite few out there   like fireplotter from fireplotter.com ,  Cisco  has one called  Cisco Security manager   http://www.cisco.com/en/US/products/ps6498/index.html

Firewall analyser is another one  from manage engine http://www.manageengine.com/products/firewall/

Regards

Jorge Rodriguez