Kiwi syslogging of Cisco 2811 through outside interface of Pix 501
Bookmark this page:
 Yahoo!
 Google
 Windows Live
 del.icio.us
 digg
 Netscape
|
|
||||||||||||||||
|
Posted by pix help on January 28, 2007, 1:08 pm
Please log in for more thread options Hope someone can share thoughts on how best to set this up. I am trying to pass syslog from outside interface to server that sits behind pix firewall. Details as follows. Cisco2811 192.168.1.1 (LAN) 255.255.255.0 Kiwi Syslog on UDP port 514 Cisco Pix 192.168.1.2 (Outside Interface) 192.168.150.1 (Inside Interface) 255.255.255.0 Syslog sitting on: 192.168.150.27 255.255.225.0 I setup the 2811 to pass the syslog to 192.168.1.2 Trying to get the Pix to route all inbound UPD 514 traffic from the Cisco 2811 to 192.168.150.27. I would like to keep the outside Cisco 2811 traffic visable in the syslog so I can tell between Pix, 2811, and VPN 2005 that is logging to.. Does anyof this make sense? Thanks in advance for any feedback. | ||||||||||||||||
|
Posted by Walter Roberson on January 28, 2007, 3:05 pm
Please log in for more thread options >Cisco2811
>192.168.1.1 (LAN) >255.255.255.0 >Kiwi Syslog on UDP port 514 >Cisco Pix
>192.168.1.2 (Outside Interface) >192.168.150.1 (Inside Interface) >255.255.255.0 >Syslog sitting on:
>192.168.150.27 >255.255.225.0 static (inside,outside) udp interface 53 192.168.150.27 53 access-list out2in permit udp host 192.168.1.1 interface eq 53 access-group out2in in interface outside | ||||||||||||||||
|
Posted by pix help on January 31, 2007, 12:07 am
Please log in for more thread options > Hello,
> > Hope someone can share thoughts on how best to set this up. I am > trying to pass syslog from outside interface to server that sits > behind pix firewall. Details as follows. > > Cisco2811 > 192.168.1.1 (LAN) > 255.255.255.0 > Kiwi Syslog on UDP port 514 > > Cisco Pix > 192.168.1.2 (Outside Interface) > 192.168.150.1 (Inside Interface) > 255.255.255.0 > > Syslog sitting on: > 192.168.150.27 > 255.255.225.0 > > I setup the 2811 to pass the syslog to 192.168.1.2 > Trying to get the Pix to route all inbound UPD 514 traffic from the > Cisco 2811 to 192.168.150.27. I would like to keep the outside Cisco > 2811 traffic visable in the syslog so I can tell between Pix, 2811, > and VPN 2005 that is logging to.. > > Does anyof this make sense? Thanks in advance for any feedback. Hello, Thank you for the suggestion. It works, well kinda. Here is the deal. The syslog is listeniing on UDP 514. All other network devices are logging to this port. The Cisco 2811 is setup for logging but nothing comes through on UDP 514. When I allow all UDP traffic from Cisco 2811 through Pix firewall to syslog it works. It would not be good to allow all UDP traffic. What gives here? Anyone with suggestion of feedback on this? I researched and could not find anything helpful. I guess the question is what ports(s) does the Cisco 2811 use for syslog? Thanks! | ||||||||||||||||
| Similar Threads | Posted |
| Kiwi syslogging of Cisco 2811 through outside interface of Pix 501 | January 28, 2007, 1:08 pm |
| 2811 E1 Interface | October 7, 2006, 10:37 am |
| Does 2811 fast ethernet interface support ISL encapsulation? | July 20, 2005, 4:04 am |
| Kiwi Syslog | October 6, 2005, 3:07 am |
| anyone using kiwi syslog? | October 18, 2005, 2:03 pm |
| Kiwi Cat Tools | July 24, 2008, 5:34 pm |
| VPN 3005, syslog and Kiwi service | May 18, 2006, 10:32 am |
| mib for Cisco 2811 | October 31, 2005, 11:27 am |
| Cisco 2811 SDM | July 7, 2006, 7:31 am |
| Cisco 2811 max. troughput | May 9, 2006, 8:35 pm |
| IPSEC with a Cisco 2811? | May 3, 2007, 9:29 am |
| Cisco 2811 VPN NATting | May 24, 2007, 11:26 am |
| Cisco 2811 Easy VPN issue | October 4, 2005, 4:21 pm |
| Cisco 2811 Easy VPN issue | October 4, 2005, 4:22 pm |
| Cisco 2811 router max. troughput | January 15, 2007, 10:32 am |
>trying to pass syslog from outside interface to server that sits
>behind pix firewall. Details as follows.