I have never used Syslogs before but was asked to setup one.
I am having trouble setting it up with my Cisco ASA 5505 security Device.
I can ping FROM the server to the Cisco ASA
I can ping FROM the ASA to the Server.
Things I have done.
- I have downloaded the Solarwind Kiwi Sylog server.
- I installed it as a service.
- I tested the Kiwi Syslog server using it's built in testing tool and I received messages. They came in on 127.0.0.1.
- In Kiwi Sys Log server I added the IP address of the Cisco ASA.
- File - Setup - Input - 192.168.200.1 (Server address)
- Inputs - UDP
- Made sure Port was set to 514
- Logged into the Cisco ADSM management.
- Went to:
- Configuration - Device Management - Logging
- Under Logging setup I selected "Enable"
- Logging filters
- I enabled Sys Log and selected "Severity:Warnings" for all event classes.
- Clicked on "Sys Log Server" from the menu. I added:
- Interface: Data (inside which the Sys Log is connected to)
- IP Address ( IP address of the Syslog server)
- UDP Port 514
- EMBLEM and Secure is set to "NO"
- Click on "Syslog Setup" on the ASA in the menu structure
- Include Timestamp in syslogs
- I applied the settings to the ASA and then committed the changes to flash.
Any ideas on why the syslog server isn't displaying the info?
Thanks so much in advance!