THEN TRACE ICMP! (youre eyes will not be garbled anymore)
Martijn
-Oorspronkelijk bericht-
Van: Patrick Donlon [mailto:[EMAIL PROTECTED]
Verzonden: donderdag 31 juli 2003 17:26
Aan: [EMAIL PROTECTED]
Onderwerp: Re: Logging ICMP on a PIX [7:73232]
I don't really want to see all ICMP traffic
Sounds like you need to turn on accounting to get the start/stop records.
-Original Message-
From: Jim Devane [mailto:[EMAIL PROTECTED]
Sent: 31 July 2003 18:42
To: [EMAIL PROTECTED]
Subject: VPN logging ACS server [7:73297]
Hello all,
I have 3.6 Clients connecting to a PIX 515
just do logging buffer debug and clear the buffers immediately before your
testing.
You can alter the logging queue size if necessary.
Bikespace
Patrick Donlon wrote in message
news:[EMAIL PROTECTED]
I don't really want to see all ICMP traffic as it makes me cross eyed, I
can
filter
PROTECTED]
Onderwerp: Logging ICMP on a PIX [7:73232]
Do anyone know how to log ICMP traffic that is allowed through a PIX?? I can
see denied ICMP no problem.
I can log all my other traffic with logging trap debug set, but it can't see
ICMP traffic passing through the firewall. Is this normally
Just out of curiosity, why do you want to log *all* ICMP traffic through
your PIX? At logging level 4, you should see logs for selected ICMP traffic
that is characteristic of a reconnaissance attack.
Anyway, I hope you have a large disk(s) on your Syslog server :-)
-Original Message
46614) 194.#.#.2 172.16.6.91
172.16.6.91
ICMP trace off
PIX4Internet(config)#
PIX(config)# sh logg
Syslog logging: enabled
Facility: 19
Timestamp logging: disabled
Standby logging: disabled
Console logging: disabled
Monitor logging: disabled
Buffer logging: disabled
setting
up a connection.
George Murage wrote in message
news:[EMAIL PROTECTED]
Just out of curiosity, why do you want to log *all* ICMP traffic through
your PIX? At logging level 4, you should see logs for selected ICMP
traffic
that is characteristic of a reconnaissance attack.
Anyway, I hope
Hello all,
I have 3.6 Clients connecting to a PIX 515 and using Xauth. Everything is
just grand except I need a way to get a reporting of everyuser that logs in
and how long they were connected. Preferably including start and stop times.
OUr ACS server is great for showing when the connection
Do anyone know how to log ICMP traffic that is allowed through a PIX?? I can
see denied ICMP no problem.
I can log all my other traffic with logging trap debug set, but it can't see
ICMP traffic passing through the firewall. Is this normally behaviour for
6.2(2)?
Cheers
Pat
Message Posted
have a deny ip statement?
Question 2: When I perform a port scan through the router it logs some of
the events but it seems to miss the majority of them giving me the
following
error message:
%SEC-6-IPACCESSLOGRL. access-list logging rate-limited or missed 142
packets
Is access-list logging
even need the deny tcp and deny udp statements since I
also have a deny ip statement?
Question 2: When I perform a port scan through the router it logs some of
the events but it seems to miss the majority of them giving me the following
error message:
%SEC-6-IPACCESSLOGRL. access-list logging
I found the answer to question 2:
It's not usually a good idea to configure logging for access list entries
that will match very large numbers of packets. Doing so will cause log files
to grow excessively large, and may cut into system performance. However,
access list log messages are rate
Hello Group,
On a router you have the following logging available,
alerts Immediate action needed (severity=1)
critical Critical conditions (severity=2)
debugging Debugging messages (severity=7)
emergencies System is unusable (severity=0)
errors Error conditions (severity=3)
informational
Hello Group,
I've got a situation where I need to keep track of my IPSEC VPN connectivity
to see how often it goes up and down. I prefer to use syslog, and have the
VPN log messages when it does go down/up rather than SNMP. It seems like by
default, there are some logging messages logged but I'm
you could send radius accounting messages to a radius host
- Original Message -
From: Albert Lu
To:
Cc:
Sent: Friday, February 07, 2003 7:04 AM
Subject: Logging VPN UP/DOWN status
Hello Group,
I've got a situation where I need to keep track of my IPSEC VPN
connectivity
to see how
If you do find a workaround, please let us (me) know?
Thanks
Jmaie
-Original Message-
From: Symon Thurlow [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, February 04, 2003 4:13 PM
To: [EMAIL PROTECTED]
Subject: RE: PIX logging [7:62467]
Further to this,
I searched Google (I do get
20:29
To: [EMAIL PROTECTED]
Subject: RE: PIX logging [7:62467]
If you do find a workaround, please let us (me) know?
Thanks
Jmaie
-Original Message-
From: Symon Thurlow [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, February 04, 2003 4:13 PM
To: [EMAIL PROTECTED]
Subject: RE: PIX logging [7
Hi guys,
I am studying the PIX, and have successfully set it up, and am logging
to kiwi syslog daemon on my windows XP box.
I have done this before, not at home, and the info I saw in the syslog
screen was reasonably detailed, ie it had the source and destination
ports in the text, for warnings
to
conduits).
Cheers,
Symon
-Original Message-
From: Symon Thurlow
Sent: 04 February 2003 20:50
To: [EMAIL PROTECTED]
Subject: PIX logging
Hi guys,
I am studying the PIX, and have successfully set it up, and am logging
to kiwi syslog daemon on my windows XP box.
I have done
Hello
I think you did not open port on pix to send log information to server
when you install pfss software it shows what ports it is using on TCP and
UDP check it and modify this commnad on pix
logging host inside 192.168.11.254 tcp/the port number
by default is uses 1468
but some time it use
Thanks everyone for the replies but I have it working now but what gets
me I have no clue what did it. I took all of the logging info that was
posted in my original email off of the pix and put it back on after
doing so it started working.
Usman I am not using the pfss software from Cisco I am
Elijah,
I would add 'logging buffered debug' and see if you get any error messages
in the local log file. You check the local using 'show log'. You may see
traffic being blocked by an ACL.
Secondly version 6.2(2) does have the packet capture feature. It is too long
to go into but check the CCO
All,
I have a pix running 6.2 it is logging to a freebsd server on the local
network. It was logging at one time to syslog no problem but all of a
sudden it stopped and I can't get it working. Here is the logging config
I turned up logging to see if it would help and nothing. Yes I am sure
As a last resort I did reboot the pix also but still no logging, what am
I missing?
-Original Message-
From: Elijah Savage III
Sent: Sunday, January 26, 2003 1:11 PM
To: [EMAIL PROTECTED]
Subject: Help with pix firewall logging [7:61902]
All,
I have a pix running 6.2 it is logging
Is syslogd still accepting connections from network devices? Did you
change the firewall on the FreeBSD machine? The problem may not be the
PIX.
Ken
Elijah Savage III 01/26/03 10:11AM
All,
I have a pix running 6.2 it is logging to a freebsd server on the
local
network. It was logging
The problem is definitely the pix. Even if syslogd was not running or a
firewall running on the box was blocking it I would still see the
packets arriving to the box when running tcpdump on the server.
But yes other machines are still logging to this box.
-Original Message-
From: Ken
It may that no alerts at the warnings level have occured. Trying setting
it at a high level such as 6 or 7 (which pretty much logs everthing). Once
you have ascertained that logging between the PIX and syslog server are
working, then restore it back to the warnings level.
HTH,
Charles
Elijah
Teza [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, January 14, 2003 10:37 AM
To: [EMAIL PROTECTED]
Subject: PIX Logging [7:61039]
I have a PIX 525 with 6.1(1) version. I have setup a kiwi syslog server for
logging. What is the best choice out of
0-emergencies-System unusable messages
1-alerts-Take
Hello!
I used to setup the 'logging trap degugging' and evaluate the environment
for some days. After I managed to solve all the problems which arised during
this period, I used to use 'logging trap errors'.. For additional security I
use 'logging buffered informational' or 'logging buffered
I have a PIX 525 with 6.1(1) version. I have setup a kiwi syslog server for
logging. What is the best choice out of
0-emergencies-System unusable messages
1-alerts-Take immediate action
2-critical-Critical condition
3-errors-Error message
4-warnings-Warning message
5-notifications-Normal
depends what you want, you want it all pick 7 :)
Dave
Azhar Teza wrote:
I have a PIX 525 with 6.1(1) version. I have setup a kiwi syslog server
for
logging. What is the best choice out of
0-emergencies-System unusable messages
1-alerts-Take immediate action
2-critical-Critical
]
Subject: PIX Logging [7:61039]
I have a PIX 525 with 6.1(1) version. I have setup a kiwi syslog server for
logging. What is the best choice out of
0-emergencies-System unusable messages
1-alerts-Take immediate action
2-critical-Critical condition
3-errors-Error message
4-warnings-Warning
The following is the commands that are on my switches and routers that our
authenticating and accounting on the ACS and the logging of the exec
commands are not being done. Do I need anything added or removed from the
bottom configuration? Thanks again for your assistance.
aaa new-model
aaa
Is there is a way to log or account for all the exec commands that are done
on a router or switch on an ACS server. I have a setup where all my login
authentication and accounting is done thru a ACS server but I was
wondering if I could get more detailed accounting accomplished by some means
In your AAA config specify a line for
aaa accounting commands 15 default start-stop
specify whatever group or method list you wish
Cheers,
Colin McNamara
Amer wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Is there is a way to log or
account for all the exec commands that are
Hi,
Anyone using Webtrends with PIX Firewall ?
Regards,
Bruno Fernandes
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=56496t=56496
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Hi all,
I need to log all TCP traffic from the inside interface of a PIX 515E (IOS
6.1) to the outside.
On a router it's an easy task, a log server and an extendent access list
like permit tcp any any log, but in PIX access-list the log command is no
allowed.
Any idea ?
I tried a workaround
Change the logging level to 6 and you will even get the URL's.
--
David C Prall [EMAIL PROTECTED] http://dcp.dcptech.com
-Original Message-
From: [EMAIL PROTECTED] [mailto:nobody;groupstudy.com]
Sent: Monday, October 21, 2002 10:34 AM
To: [EMAIL PROTECTED]
Subject: logging http
What command on a 5000 series switch is equivalent to the logging
synchronous command on a router?
Thanks,
Kevin
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=52986t=52986
--
FAQ, list archives, and subscription info: http
network engineer
Tel.: +36 22/515-452,
Fax: +36 22/327-532
E-Mail: [EMAIL PROTECTED]
-Original Message-
From: Gaz [mailto:[EMAIL PROTECTED]]
Sent: Saturday, August 10, 2002 8:02 PM
To: [EMAIL PROTECTED]
Subject: Re: Pix logging to a Freebsd syslog server
:* (
(your hostname goes there)
-Original Message-
From: Gaz [mailto:[EMAIL PROTECTED]]
Sent: Saturday, August 10, 2002 2:02 PM
To: [EMAIL PROTECTED]
Subject: Re: Pix logging to a Freebsd syslog server [7:51124]
Is it really the source port?
Normally the destination port is UDP 514.
Does
Hi group,
I am setting up a gatekeeper with a couple of gateways. I have installed a
RADIUS server enabled gatekeeper accounting. The problem is that in the
log file there is only the gatekeepes's IP address and the H323-ID of the
gateways logged:
NASIPADDRESS: a.b.c.d --- IP address of
The Cisco logging facility on a router uses a random high port as the
source for the syslog packets. I assume the PIX is the same since you're
having trouble. The FreeBSD syslogd expects the packets to be sourced
from port 514. You can try the flag that supposedly allows syslogd to
take random
Helo!
To Neal Rauhauser : If you don't specify source port, the PIX (OS 6.x) will
send syslog messages from UDP port 514!! You can change this to whatever
from range 1025-65535 : for example: logging host inside 192.168.11.4 udp/1025
So I think this is not a problem, if the FreeBSD syslogd
d syslog messages from UDP port 514!! You can change this to whatever
from range 1025-65535 : for example: logging host inside 192.168.11.4
udp/1025
So I think this is not a problem, if the FreeBSD syslogd expects the
packets
to be sourced from UDP port 514.
To Elijah Savage:
Can anyone help me out with a PIX logging to a Freebsd syslog server. I
thought I was sure about setting this up but I am not getting any
messages on the server, see my configs below.
logging on
logging timestamp
logging trap debugging
logging facility 23
logging host inside 192.168.11.4
ph x39-041-5907073
-- I-31021 Mogliano V.to (TV) fax x39-041-5907472
-- ITALY
-Original Message-
From: Chris Camplejohn [mailto:[EMAIL PROTECTED]]
Sent: Sunday, May 26, 2002 4:33 AM
To: [EMAIL PROTECTED]
Subject: Re: DDR logging line opening ? [7:44798]
Check the SNMP MIBs...I
Check the SNMP MIBs...I can't remember the one off the top of my head, but
there is one for Call Detail History...You can query that and get all sorts
of good info (like you see in sh isdn hist, sh isdn active...)
Chris
Herold Heiko wrote in message
[EMAIL PROTECTED]">news:[EMAIL
Hello,
ddr, dialer profiles, isdn (ininfluent though I think).
When a connection comes up something like this is logged:
%LINK-3-UPDOWN: Interface BRI1/0:2, changed state to up
%DIALER-6-BIND: Interface BR1/0:2 bound to profile Di99
%LINEPROTO-5-UPDOWN: Line protocol on Interface BRI1/0:2,
Use a sniffer in combination with this log. This will help you identify
which traffic opens the DDR link and which not.
If there are any other ways, let me know.
Rgds,
Crestion
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=44815t=44798
You may try adjusting your logging levels and see if you can get anything
more meaningful. I don't have any ISDN interfaces or simulators at the
moment so please post back if you find anything good.
Herold Heiko wrote:
Hello,
ddr, dialer profiles, isdn (ininfluent though I think).
When
Hi, everyone
I want disable error logging on serial 2 interface.
I tried no logging event link-status on serial 2 interface. But it does not
work. If you know how. Please let me know.
Many thanks
Kevin
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=42215t=42215
If it is logging to a SNMP manager try:
int ser 2
no snmp trap link-status
-Original Message-
From: Love Cisco [mailto:[EMAIL PROTECTED]]
Sent: Monday, April 22, 2002 5:53 AM
To: [EMAIL PROTECTED]
Subject: How to disable error logging on serial interface? [7:42215]
Hi
Sorry, It is logging to the cisco syslog. Not logging to a SNMP manager.
You know when you type show logging. you can see the logging message in
syslog.
By the way, I have tried
int ser 2
no snmp trap link-status.
it is not working
Message Posted at:
http://www.groupstudy.com/form/read.php?f
Have seen it on many (mostly smaller) routers. Its a bug:
## Bug Id : CSCdu60369
## Headline no syslog logging when logging synchronous enabled
## Product c2600 Model
## Component os-logging Duplicate of
## Severity 2 Status M
## Version Found12.0(7)T 12.0(6)S Fixed
Cool! I will spend sometime today learning how to use the bug tool...
Thanks,
Pierre-Alex
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: Sunday, March 31, 2002 12:00 PM
To: [EMAIL PROTECTED]
Subject: RE: Logging - terminal monitor not working [7:39957
R1#sh terminal
Line 2, Location: , Type: ANSI
Length: 45 lines, Width: 80 columns
Baud rate (TX/RX) is 9600/9600
Status: Ready, Active, No Exit Banner
Capabilities: Receives Logging Output
Modem state: Ready
Group codes:0
Special Chars: Escape Hold Stop Start Disconnect Activation
I would add no ip route-cache on that interface and make sure that you
don't have logging synchronous under line con 0...
-- Lidiya White
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
Pierre-Alex Guanel
Sent: Saturday, March 30, 2002 3:04 PM
Amazing I removed logging synchronous on line console 0 and debug
worked
I am curious, what is the reason for logging synchronous preventing debug
outputs
on terminal lines?
Pierre-Alex
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Lidiya
i read in a book that the following were arranged in
least to most cpu utilization, i wanted to verify it
though, and i can not seem to find another source,
cisco or otherwise
buffered logging syslog virtual terminal console
does anyone know
: Vincent Miller [mailto:[EMAIL PROTECTED]]
Envoyi : lundi 4 fivrier 2002 20:42
@ : [EMAIL PROTECTED]
Objet : RE: logging the access on a router [7:34346]
Importance : Faible
Is this what you had in mind ?
! Last configuration change at 00:05:35 ECT Wed Nov 22 2000
! NVRAM config last updated
Hello
I'm trying to log access on a router (who and when) with a simple
configuration ( without tacacs+ or radius)
how i can do this ?
Kind Regards.
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=34346t=34346
--
FAQ, list
Hello,
You can use access lists to log it. You can use either logging buffered
(limited in number of entries) or use a dedicated log server.
Alex
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=34353t=34346
--
FAQ, list archives
Syslog doesn't do user information. You have two choices: Make an
extended access list with the keyword log to log telnet packet access, OR
configure aaa and log the debug aaa auth output
Probably a little more than you had hoped for but should do the trick.
Dion, Thierry wrote:
Hello
!
logging buffered 4096 debugging
the service timestamps will do the trick. you can create a local database of
userids/passwords that can make changes, the userid will
be included in the two lines at the top
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=34370t=34346
Now offering CCIE Security Lab Workbook and remote bootcamp,
http://www.hellocomputers.com/hellosuccess.html;
-Original Message-
From: Dion, Thierry [mailto:[EMAIL PROTECTED]]
Sent: Monday, February 04, 2002 8:09 AM
To: [EMAIL PROTECTED]
Subject: logging the access on a router [7:34346
Hi,
Has anyone ever encountered problems related to logging? I mean a router
with level debugging set on all destinations stops logging to buffer and
monitor, and the solution is to change console logging level to warnings
or less (even no logging console)? I've also noticed that no logging
This is a known bug. The suggested fix is not to use 'logging
synchronous'. I had this problem with a 3660 for months using three
different IOS versions! I ran across the bug report so I removed
logging synch and it started working.
HTH,
John
Theo 1/17/02 6:46:57 AM
Hi,
Has anyone ever
Does anyone have a perl script or something that you can configure to go out
to a list of routers and copy the configs to a folder.
thanks
_
Chat with friends online, try MSN Messenger: http://messenger.msn.com
Message Posted
IMHO, you're best off to setup a TACACS server Cisco offers one that you
can install on a Windows NT machine. This will give you options to let
various people authenticate with different priviledges as well as offer
authorization and accounting functionality. You can also setup a syslog
Hi everyone,
I have a customer that uses 3600 with E1 leased line connections to their
branch offices and their consultant company. They want a full control on the
consultants so they want some config changes to manage them.
First there are two locations that connect to their network for
Hi,
At my last company, I was able to configure logging for all telnet sessions
into the routers. The logs displayed the source IP of the client and of
course the timestamp. I have since forgotten how to enable this. Can
someone please advise?
thanks...
Message Posted at:
http
Without the use of ACL logging.
thanks...
-Original Message-
From: Telemachus Luu [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, November 28, 2001 1:45 PM
To: [EMAIL PROTECTED]
Subject: Logging source ip for telnet sessions [7:27585]
Hi,
At my last company, I was able to configure
AAA accounting will do the trick
- Original Message -
From: Telemachus Luu
To:
Sent: Wednesday, November 28, 2001 4:45 PM
Subject: Logging source ip for telnet sessions [7:27585]
Hi,
At my last company, I was able to configure logging for all telnet
sessions
into the routers
Hi all,
I am managing a WAN network for my company and there
are total 15 routers (different models). Can anyone
pls tell me which command is the most suitable to
determine the free memory? coz I need to allocate some
for the internal buffer logging.
Is it
sh memory?
sh proc cpu?
Besides, how
server
Option 2 : keep log in router
Pro: dont need extra linux server
Con: log message size restricted
Doubts:
Most probably I will choose Option2 but my worry is
will the logging process affect the router's
performance? especially the memory of router..
Thanks for helping.
Regards,
Alvin
CCNA
download it here:
http://www.kiwi-enterprises.com
Option 2 : keep log in router
Pro: dont need extra linux server
Con: log message size restricted
Doubts:
Most probably I will choose Option2 but my worry is
will the logging process affect the router's
performance? especially the memory
log in router
Pro: dont need extra linux server
Con: log message size restricted
Doubts:
Most probably I will choose Option2 but my worry is
will the logging process affect the router's
performance? especially the memory of router..
Actually, writing the log to memory takes the least
MRTG is one, thats very good, with nice graphs to show visuals of traffic
levels.
-Original Message-
From: cisco skin [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, August 28, 2001 3:04 PM
To: [EMAIL PROTECTED]
Subject: Logging traffic [7:17559]
Here's what I want to do:
Log all traffic
-Original Message-
From: cisco skin [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, August 28, 2001 12:04 PM
To: [EMAIL PROTECTED]
Subject: Logging traffic [7:17559]
Here's what I want to do:
Log all traffic (source/destination ip address/port #) from a specific
subnet (our HQ) to see what's
Hi,
Depends on what your are really trying to achieve. If you have plenty of
head room in your router you could just add stuuf to an access-list and send
the list to a syslog. Cheap nasty but a good way to solve issues.
access-list 101 permit icmp any any log
access-list 101 permit tcp any
I would add the syn predicate to cut down on
logging traffic. This will only log the first
TCP segment, but it will still contain the source
IP address, Time of Day, etc.
access-list 101 permit tcp any any lt 100 syn log
Since syslog traffic is sent on the data link in
human readable form I
Here's what I want to do:
Log all traffic (source/destination ip address/port #) from a specific
subnet (our HQ) to see what's passing through our external router, and where
they're going.
Any suggestions?
Thanks,
Jeff
Message Posted at:
You can use a freeware utility that runs on UNIX called ACID (Intrusin
detection) that can pick up all of this info.
-Original Message-
From: cisco skin [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, August 28, 2001 3:04 PM
To: [EMAIL PROTECTED]
Subject: Logging traffic [7:17559]
Here's
etection) that can pick up all of this info.
-Original Message-
From: cisco skin [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, August 28, 2001 3:04 PM
To: [EMAIL PROTECTED]
Subject: Logging traffic [7:17559]
Here's what I want to do:
Log all traffic (source/destination ip address/port
Hey All,
I have been trying to set up my 3660 (IOS 12.1) access router to log
everything to my HP OpenView server (Solaris 8). It seems simple to set
up on the Cisco side with only a few commands but it doesn't seem to be
working. The 'show logging' command indicates that it is working
There is a bug in some releases of 12.1 that will cause this. The
workaround is to specifically set the source interface use the logging
source-interface command.
HTH,
John
Charles Dowling 8/27/01 9:56:09 AM
Hey All,
I have been trying to set up my 3660 (IOS 12.1) access router to log
commands but it doesn't seem to be
working. The 'show logging' command indicates that it is working and
sending messages to the remote box but it is not receiving anything.
Any thoughts, guidelines, info?
Thanks,
Charles.
These are the configuration items I entered:
logging on
logging
You are spending too much time on Microsoft Windows, that's why your Unix
skill is getting rusty. Joking aside, on a serious thought, make sure
that your syslogd is accepting remote logging connection. On your
Solaris box, do the following: ps -eaf | grep syslog, if you see
something like
Hello Charles,
Please try as an example
logging 192.168.x.x
logging trap debugging
logging facility local6
( you can use other facilities here but match what you do on the SUN box.)
On the SUN box try (in the syslog.conf file)
local6.debug/var/adm/messages (or any file you
to my HP OpenView server (Solaris 8). It seems simple to set
up on the Cisco side with only a few commands but it doesn't seem to be
working. The 'show logging' command indicates that it is working and
sending messages to the remote box but it is not receiving anything.
Any thoughts, guidelines
I'm having a strange problem with a 2600 running 12.2(1a), after a short
period of time (30 to 60 mins) the router will stop logging messages to the
vty lines with terminal monitor. I can perform a show logging history and
see the last message in the history but nothing is display as it happens
There is a bug when logging synchronous is used on the vty or console ports.
I hit this issue also.
^-^-^-^-^-^-^-^-^-^-^
Bill Carter
CCIE 5022
^-^-^-^-^-^-^-^-^-^-^
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Patrick Donlon
Sent: Friday, August
Thanks Bill, I'll check this out straight away, was the bug introduced in
12.2? or earlier
cheers Pat
Bill Carter wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
There is a bug when logging synchronous is used on the vty or console
ports.
I hit this is
There is a bug when logging synchronous is used on the vty or console
ports.
I hit this issue also.
^-^-^-^-^-^-^-^-^-^-^
Bill Carter
CCIE 5022
^-^-^-^-^-^-^-^-^-^-^
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Patrick Donlon
Sent: Friday, August 24, 2001
When your in a router you set logging synchronous to eliminate messages
interupting your display. What is he command to do this on a Catalyst switch?
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=15080t=15080
--
FAQ, list
have you checked to see that the syslog server isn't already using the
facility (i.e. LOCAL7) for another service? are you sure that the messages
from the cat arent' going to another log file ?
jason
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=14340t=14188
Hey Jason,
Thanks for your input. I defined local0 the facility to be used both in the
Cat and in syslog.conf. I have the same config in the route-switch card
which is on the Sup module and that logs to the syslog server just fine. I
did check the messages file on the server to see if
Hi
It has been a while since I've touched a 5000 but...
Can you ping the syslog server from the Cat?
If not, you may need to add a route so that the console knows how to get to
the syslog server (set ip route ...)
HTH
RM
Dennis H wrote:
I'm trying to get remote logging enabled
I'm trying to get remote logging enabled on a Cat5509 and could use some
advice. I have everything set up according to Cisco's site but messages do
not make it to the syslog server. The sc0 is configured with an ip and
gateway and I can ping and telnet to the syslog box. I have the severity
1 - 100 of 165 matches
Mail list logo