Need information on logging ASA5505
Hello,
I need to learn about logging and viewing the logs on an ASA5505. I am new to this - in general, I think logging means to track all traffic inbound to the firewall and then save it somewhere so I can look at to see what is going on. Can someone explain the theory to me? Like what information I should be watching for?
Thanks
I recommend you have a listen to the TAC Security Podcast #32. It had an excellent talk all about ASA syslogs and how to use them. You can find it (and all the other episodes) here.
Syslogs are much more than just connection and access-list records, although they can include those too. You basically set severity levels you are interested in and send the logs to a log server where they are archived and searchable (and perhaps setup to take certain action such as alert an admin if something goes wrong).
Many people set their logging level too high and then proceed to not use the syslog since a firewall with logging level 6 will create a message for every single tcp session establishment and teardown. That can often mean hundreds of thousand or even millions of message per day.
If you want an overview of the logging levels and how to setup logging in general, refer to this section of the configuration guide.
Similar Messages
-
HT1849 my songs cut.. some of them playing only 45 seconds Why? i need information about it..
some of my songs playing only 45 seconds Why? i need information about it..
Other people have been having similar problems over the last few days, I assume that there has been a problem with Apple's servers.
Depending upon what country that you are in (music can't be re-downloaded in all countries) then try deleting them from your iTunes library and redownload them via the Purchased link under Quick Links on the right-hand side of the iTunes store home page on your computer's iTunes : re-downloading.
If you aren't in a country where you can re-download music or if they re-download in the state then try the 'report a problem' link from your purchase history : log into your account on your computer's iTunes via Store > View My Account and you should then see a Purchase History section with a 'see all' link to the right of it ; click on that and you should see a list of your purchases ; find those songs and use the 'Report a Problem' link -
Need Information on an Application (intel) called Java VisualVM.
Need Information on an Application (intel) called Java VisualVM. I dont know where it came from, whats it's for and why it is there? More importantly, how to get rid of it?
Thanks guys.Hello Ram
regarding "environment parameters" there might be one "disadvantage". If you would have the need to change the parameter you need a transport. May be there are other useful options which could be of interest:
As you may be now you can store user dependent parameters on the level of the SAP user. One example is:
You (as the user) can select a property tree. This selection of a property tree can be stored on userid level (therefore if you log off and log on once again the selection property is your "default" one,)l. Regarding this option you do not need a customizing parameter. The "cons" of this options are:
a.) you must prepare this "parameter" like a constant in your program to be read from user profile
b.) you should make sure that the user can only select from a number of values or if the user is using a value which is not allowed you need some "error" handling routine
So may be this option is not so "robust" but is used very often in SAP and in SAP EH&S.
With best regards
C.B. -
Need information about daily back using DB13
Hi,
Need information about how to take daily backup through t-code: DB13
I clicked on 2days date and then there at Action Pad tab clicked FULL DATABASE ONLINE + REDO LOG BACKUP.
Then from here what to dopandu babai,
in db13 we take daily backups.
u can schedule the job according to ur requirement timing.
daily online, disk or tape.
plus redo logs as copy, delete and save.
after scheduling the tasks the backup will be started and internally the background jobs like SAP_SLD_DATA_COLLECT etc., are triggered.
(After the DB13 backup)also in the same screen if we double click on the backup option we can check the job log, action log and detail log for the scheduled backup. -
Need to be logged in to get help with logging in? ...
While this is obviously a vent, I really would welcome suggestions for password help in the future. Here goes...
We don't use Skype often, but when we want to use it, we want to use it NOW. Because we don't use it often, we forget the Skype name and password between times. Yes, we should have a way to remember it, but this is 2015 and we expect a tool to help us out a little bit in our busy lives.
The first step is to remember our Skype name. Since we had to pick a unique one, it's not something we use for anything else and we don't remember what we had to come up with on the fly when we signed up for Skype. Fortunately, we did keep the welcome email from when we signed up and it has our Skype name in it. Great!
Ok, next we need our password. Nothing we type is working. We click to request a password reset and an email is supposed to be sent to us. One would think it would arrive immediately, but no. We requested it more than 2 hours ago and have not received anything. And no, it is not in the Spam/Junk folder either. We know the code will only be good for 3 hours. Where the heck is the email to tell us what it is?? If this were a one-time circumstance where it didn't arrive right away, that would be forgivable, but this has happened before. No email, or at least not until several hours later.
Ok, with no reset email, we keep trying different passwords and none work. Now we're notified that we're locked out and need to wait to try again. Did I mention we want to use Skype NOW? We don't want to wait over 2 hours for an email (which still hasn't arrived). We don't want to be locked out for 24 hours. We want to Skype... NOW.
Ok, we need customer support help. Where is the customer support number? Doesn't seem to be one. Where is the live chat button? Need to pay for that. Well, email takes forever, but at least it gets a message straight to Skype that we need help so we'll go that route. Guess what, you need to be logged in to be able to send an email for support. Are you kidding me?? I need to be logged in to tell you I can't get logged in.
Ok, the only other option for help is the community. The existing posts aren’t helping me, and I can't post anything new unless I'm... get this... logged in. I cannot believe there is no way to get a message to anyone connected with Skype unless I'm logged in.
Out of total desperation, I created a new Skype account. And going against all best practices for security, we have written down the odd user name we needed to choose, as well as the new password. Out of the 300 million Skype accounts that exist, I can't help but think some 200 million of them are extra accounts people needed to create because they couldn't get their password reset.
I'll end my venting there. If anyone has any insights on more I could've/should've tried to get my password reset IN A TIMELY MANNER, please share. I would not be surprised if the reset code email eventually arrives, but if it's going to take 2+ hours to get it to me, don't even bother.In case anyone needs it, this seems to be the thread that MS is following the closest:
http://answers.microsoft.com/en-us/windows/forum/windows_tp-winipp/build-9879-windows-feedback-app-doesnt-recognize/6fc9b35b-8141-4045-b17a-f53ecd5ca6ae -
Hello,
The first, i don't speak english very well.... ;)
the company for which work has 3 seats now, but is going to open 5 more.
All these seats are small, and the cost to install Oracle in each one of them is very elevated.
i would like to know to me if Grid Computing can help me centralizing everything in a Seat. The scalability is something very important. and i need have several instances of BD oracle up...
I need information...
Yo can write me to [email protected]
Thanks in advanceHi.
By seat, I assume you mean site or location.
It's difficult to answer this type of question as it depends on so many factors. Personally, I would always go for the centralized solution. This way you don't need to worry about replication or distribution of data. Those things are always a nightmare.
RAC is great for high availability, and it will allow you to increase your horsepower as and when you need it, but you still need to consider your performance erquierments up front.
Of course, centralization comes with it's own set of problems. Are you going to connect to the central server via the web, VPN, leased line? What happens when the connection is unavailable?
There is just so much to consider...
Cheers
Tim... -
I need information about personal experience with DFS-R: shortcomings and limitaions of DFS-R
Hello,
We plan to install DFS-R in our organization.
I need information about personal experience with DFS-R: shortcomings and limitations of DFS-R.
Thank you for any info.Hi,
You could refer to the articles below to see some limits about DFSR and some DFSR configuration mistakes which will cause DFSR problems:
Understanding DFS Replication "limits"
http://blogs.technet.com/b/filecab/archive/2005/12/12/understanding-dfs-replication-_2200_limits_2200_.aspx
Common DFSR Configuration Mistakes and Oversights
http://blogs.technet.com/b/askds/archive/2010/11/01/common-dfsr-configuration-mistakes-and-oversights.aspx
Regards,
Mandy
We
are trying to better understand customer views on social support experience, so your participation in this
interview project would be greatly appreciated if you have time.
Thanks for helping make community forums a great place. -
I need information about reports
hi gurus,
i need information about Trending reports and Management reports. Can any body provide me the scenario regarding this issues:Hi
Trend reports are the reports which show a certain trend all over the years
Say, Sales revenue for the year compared to all the previous years...This show what is the trend in the last few years
Management reports high level reports with summarized data which helps in decision making. Say, Vendor performance report...this report shows list of default vendors by ranking them and management can decide to continue or not to continue with certain vendors
Regards
N Ganesh -
I need information regarding the creation of Workbook and WAD.
Hi,
I need information regarding the How to create the Workbook and WAD.
Can any one help me to get the information..
Regards,
Suman
Edited by: Suman Reddy Vuyyuru on May 19, 2009 8:22 AMHi,
for workbook:
[Queries in Workbook|http://help.sap.com/saphelp_sem40bw/helpdata/en/e3/e60138fede083de10000009b38f8cf/frameset.htm]
for WAD:
[WAD for Beginners|https://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/749a4622-0a01-0010-36bf-b6b30a2a3a22]
thnks. -
I need information about oops concept programming in abap
Hi ,
I need information about oops concept programming in abap
Thanks,
AshaOf course, the best place to start is help.sap.com.
http://help.sap.com/saphelp_nw2004s/helpdata/en/ce/b518b6513611d194a50000e8353423/frameset.htm
There are a couple good books out there as well. You can get them at www.amazon.com
Regards,
Rich Heilman -
I need information on my bill, for the last two yrs, how do i go about looking for it
i need information on my bill for the last two yrs, how i go about looking for it . thanks\
The last 12 months' worth can be obtained via your on-line MyVerizon account; look under View Bill and use the drop-down to select the appropriate bill. Anything prior to the past 12 months would need to be obtained via Customer Service; there is a charge (I believe $5 per copy, but I'm not sure).
-
I need information about Web dynpro ABAP Exception : ICF Service Node
I need information about Web dynpro ABAP Exception :
ICF Service Node "/sap/bc/webdynpro/sap/abcd/undefined" does not exist.
Here abcd is application name.
ICF Service Node exists and activated but kindly let me know from where "undefined" is coming .
Please let me know your comments /views about this.Hi,
I think ur webdynpro service is not active after upgradation.
You have manually activate it.
Go go Tcode SICF,Execute the Initial screen,
and in this new screen give service as your application name and click on filter.
You will get your service below which will be ur application name .
right-Click on the deactivate and activate it or just activate it,.
This shd work -
I need information about ESS and Training and Work Experience
I need information about ESS and Training and Work Experience.
Anyone know if there is something inside of the component ESS about Training and Work Experience (infotypes 22 and 23)?
I appreciate information.
Thanks.Marciano,
check this documentation
http://help.sap.com/saphelp_erp2005/helpdata/en/4d/c19ce6ef2842258283afc35a54172a/frameset.htm
Thanks
Bala Duvvuri -
I'm a Microsoft Outlook for Mac user, I need information of how to know when e-mail was readed and confirm receipt of e-mails sent. thank you! regards Mauricio
Mail and Address book
-
Need help in logging JTDS data packets
Hi All,
I m having web application which uses SQL Server database.
I have to find out some problems in database connection for that there is need to log the jtds data packets.
I have tried to use class net.sourceforge.jtds.jdbc.TdsCore but in constructor of TdsCore class there are two parameters needed one is ConnectionJDBC2 and another is SQLDiagnostic.
I have tried a lot but it did not allow me to import class *SQLDiagnostic*.
I need help in logging JTDS data packets. If there are any other ways or any body having any idea about logging JTDS data packets/SQLDiagnostic.
Please reply it is urgent...!!
Thanks in advance......!!if you want to use log4j then,
in your project create a file called log4j.properties and add this
# Set root logger level to INFO and its only appender to ConsoleOut.
log4j.rootLogger=INFO,ConsoleOut
# ConsoleOut is set to be a ConsoleAppender.
log4j.appender.ConsoleOut=org.apache.log4j.ConsoleAppender
# ConsoleOut uses PatternLayout.
log4j.appender.ConsoleOut.layout=org.apache.log4j.PatternLayout
log4j.appender.ConsoleOut.layout.ConversionPattern=%-5p: [%d] %c{1} - %m%n
log4j.logger.org.apache.jsp=DEBUG
#Addon for
com.sun.faces.level=FINEGo to your class and add this line
private static final Logger logger = Logger.getLogger("classname");and then you can use
logger.info();
logger.error();
methods
Maybe you are looking for
-
While browsing the Web with Firefox, I often want to view an htm (or html etc) file that is recorded on my computer, by double-clicking it in my Windows Explorer, hoping it will open automatically a new tab. When I try this now, I get the error messa
-
I accidentally "Learned" a word in an email that was a spelled incorrectly. How can I "unlearn" that word??
-
How do I get Internet on my iPod Touch?
How do I connect to youtube and the internet on my ipod touch?
-
Creating New Functions and Risks in RAR 5.3
All, I need to create a set of new functions and risks in RAR 5.3. What is the best way to do this? I tried to export existing functions and modify what I thought were the relevant tables. Next I tried to import this into Rule Architect > Utilities >
-
Problem sending file to co-worker
Hi everybody. I'm a casual ID user -- pardon me if I'm making a bonehead mistake or leaving out any key info from this message. I'm working on a MacBook Pro, using ID CS3 5.0. on OS X 10.5.8. I created a rough draft of a playbill, saved it as a stand