Configuring and Managing Logs
You can configure the security appliance to include the context name with each message, which helps
you differentiate context messages that are sent to a single syslog server. This feature also helps you to
determine which messages are from the admin context and which are from the system; messages that
originate in the system execution space use a device ID of system, and messages that originate in the
admin context use the name of the admin context as the device ID. For more information about enabling
logging device IDs, see the
Enabling and Disabling Logging
This section describes how to enable and disable logging on the adaptive security appliance and includes
the following topics:
•
•
•
Enabling Logging to All Configured Output Destinations
The following command enables logging; however, you must also specify at least one output destination
so that you can view or save the logged messages. If you do not specify an output destination, the
adaptive security appliance does not save system log messages generated when events occur.
For more information about configuring log output destinations, see the
Destinations" section on page
To enable logging, enter the following command:
hostname(config)# logging enable
Disabling Logging to All Configured Output Destinations
To disable all logging to all configured log output destinations, enter the following command:
hostname(config)# no logging enable
Viewing the Log Configuration
To view the running log configuration, enter the following command:
hostname(config)# show logging
The example output of the show logging command is similar to the following:
Syslog logging: enabled
Cisco Security Appliance Command Line Configuration Guide
42-6
"Including the Device ID in System Log Messages" section on page
Enabling Logging to All Configured Output Destinations, page 42-6
Disabling Logging to All Configured Output Destinations, page 42-6
Viewing the Log Configuration, page 42-6
Facility: 16
Timestamp logging: disabled
Standby logging: disabled
Deny Conn when Queue Full: disabled
Console logging: disabled
Monitor logging: disabled
Buffer logging: disabled
Trap logging: level errors, facility 16, 3607 messages logged
Logging to infrastructure 10.1.2.3
History logging: disabled
42-7.
Chapter 42
Monitoring the Security Appliance
"Configuring Log Output
42-20.
OL-12172-03