Use
the comand "Logging Trap informational". This command will send all
connection related statistics to syslog as well as denies. Be ready for a huge
logfile (50-75MB/Day for 300-500 users), the detailed explanation of the system
messages can be found here,
PS.
The build up and teardown messages give information related to NAT translations,
including foriegn address, gloobal address, and the private
address.
PSS.
Kiwi's syslog will compress the logfiles after it archives them saving tons of
space, as well as RnR soft has a report generator I have been evaluating which
has some nice features, http://www.kiwi-enterprises.com
Ken Claussen MCSE CCNA CCA
"In Theory it should work as you
describe, but the difference between theory and reality is the truth! For this
we all strive"
-----Original Message-----
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Johnston Mark
Sent: Wednesday, December 12, 2001 5:36 AM
To: [EMAIL PROTECTED]
Subject: Pix FWHi all,
This is for those of you who work with a Pix firewall ....
Is there a way that I can get the pix to log packets that are excepted ?
Cheers
Mark
