Cisco PIX 500 Series Configuration Manual page 947
Security appliance command line
Hide thumbs
Also See for PIX 500 Series:
- Administration manual (653 pages) ,
- Quick start manual (72 pages) ,
- User manual (60 pages)
Table of Contents
Advertisement
Chapter 42
Monitoring the Security Appliance
Where the severity_level argument specifies the severity levels of messages to be sent to ASDM. You
can specify the severity level number (0 through 7) or name. For severity level names, see the
Levels" section on page
sends system log messages for level 3, 2, 1, and 0.
The message_list argument specifies a customized message list that identifies the system log messages
to send to ASDM. For information about creating custom message lists, see the
Messages with Custom Message Lists" section on page
The following example shows how enable logging and send to the ASDM log buffer system log messages
of severity levels 0, 1, and 2.
hostname(config)# logging asdm 2
To specify the number of system log messages retained in the ASDM log buffer, enter the following
Step 2
command:
hostname(config)# logging asdm-buffer-size num_of_msgs
Where num_of_msgs specifies the number of system log messages that the adaptive security appliance
retains in the ASDM log buffer.
The following example shows how to set the ASDM log buffer size to 200 system log messages.
hostname(config)# logging asdm-buffer-size 200
Configuring Secure Logging
You must use TCP only. Secure logging does not support UDP; an error occurs if you try to use this
Note
protocol.
To enable secure logging, enter the following command:
hostname(config)#
[secure]
Where the interface_name argument specifies the interface on which the syslog server resides, the syslog_ip
argument specifies the IP address of the syslog server, and the port argument specifies the port (TCP or
UDP) that the syslog server listens to for messages.
The tcp keyword specifies that the adaptive security appliance should use TCP to send messages to the
syslog server. The udp keyword specifies that the adaptive security appliance should use UDP to send
messages to the syslog server. The format emblem keyword enables EMBLEM format logging for the
syslog server. The secure keyword specifies that the connection to the remote logging host should use
SSL/TLS for TCP only.
The following example shows how to set up secure logging:
hostname(config)# logging host inside 10.0.0.1 TCP/1500 secure
Clearing the ASDM Log Buffer
To erase the current contents of the ASDM log buffer, enter the following command:
hostname(config)# clear logging asdm
OL-12172-03
42-24. For example, if you set the level to 3, then the adaptive security appliance
logging host interface_name syslog_ip [tcp/port | udp/port] [format emblem]
Cisco Security Appliance Command Line Configuration Guide
Configuring and Managing Logs
"Filtering System Log
42-18.
"Severity
42-11
Advertisement
Table of Contents
Troubleshooting
