Skip to content

Forward Cisco ASA logs

Cisco ASA doesn't support CEF, so the logs are sent as syslog. Configure Cisco ASA to forward syslog messages to the LogSentinel Collector.

Go to Send Syslog messages to an external Syslog server, and follow the instructions to set up the connection. Use these parameters when asked:

  • Set port to 2514 or the port you set in the collector.
  • Set syslog_ip to the IP address of the collector.

Note

Make sure that all firewalls (including the firewall on the collector machine) allow connections to the collector port