Firewalls: Re: Cisco port logging

Firewalls
(April 1995)

Indexed By Thread: [Previous] [Next]

Subject:	Re: Cisco port logging
From:	paul @ hawksbill . sprintmrn . com (Paul Ferguson)
Date:	Mon, 24 Apr 1995 15:49:14 -0500 (EST)
To:	lafko @ ici . com (David A. Lafko)
Cc:	firewalls @ greatcircle . com
In-reply-to:	<9504241635 . AA11244 @ ici5 . ici . com> from "David A. Lafko" at Apr 24, 95 12:35:36 pm

> 
> I have found no luck obtaining an answer from comp.dcom.sys.cisco or
> from the provider of our Cisco 4000.  If there is an answer I'll fnd it
> here.
> 
> I'm using the Cisco 4000 running IOS 10.0 as our external DMZ router.
> Can I...and how do I get it to log source and destination IP ports of
> failed access lists?  I've done:
> 
> 1. logging trap debugging
> 2. turned on IP packet debugging
> 
> It logs source and destination, but no port numbers.
> 
> How can I get it to log failed/or successful login attempts?  I
> understand the risk of non console-only configuration.
> 
> 
>



It is documented in the IOS 10.3 configuration manuals. It uses the same
mechanisms which normal IP accounting would use.

- paul
 
_______________________________________________________________________________
Paul Ferguson                         
US Sprint                                          tel: 703.689.6828
Managed Network Engineering                   internet: paul @
 hawk .
 sprintmrn .
 com
Reston, Virginia  USA                             http://www.sprintmrn.com

References:

Cisco port logging
From: lafko @ ici . com (David A. Lafko)

Indexed By Date	Previous:	re: From: dan @ island . com (Daniel Remer)
Indexed By Date	Next:	unsuscribe From: steveg @ cseic . saic . com (Stephen Harold Goldstein)
Indexed By Thread	Previous:	Cisco port logging From: lafko @ ici . com (David A. Lafko)
Indexed By Thread	Next:	Re: Cisco port logging From: Howard Berkowitz <hcb @ clark . net>