[syslog-ng] PIX VPN logging
sawall
sawall at gmail.com
Wed Aug 23 17:41:35 CEST 2006
I don't have any PIX firewalls on 6.3.x any more and have tunnels. The best
thing to do would be to watch the syslogs, bring a tunnel down and then
bring it backup. Review the PIX system log code with the corresponding
explaination:
http://www.cisco.com/en/US/partner/products/sw/secursw/ps2120/products_system_message_guide_chapter09186a008051a0cd.html
If you can find the right syslog messages, we could change the patterns to
match on and go from there.
Chris
On 8/23/06, Brian Loe <knobdy at gmail.com> wrote:
>
> Any ideas on the what the differences might be between 6.3 and 7.x?
>
> and thanks, btw!
>
>
> On 8/23/06, sawall <sawall at gmail.com> wrote:
> > The following SEC (http://kodu.neti.ee/~risto/sec/) configs appear to
> work
> > to Monitor VPN tunnels on PIX version 7.x. The first monitors for a
> _______________________________________________
> syslog-ng maillist - syslog-ng at lists.balabit.hu
> https://lists.balabit.hu/mailman/listinfo/syslog-ng
> Frequently asked questions at http://www.campin.net/syslog-ng/faq.html
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.balabit.hu/pipermail/syslog-ng/attachments/20060823/2ccbb7ad/attachment.htm
More information about the syslog-ng
mailing list