Hi-
We have a PIX 506e - we want to setup syslogging for "only" http" traffic.
Syslogging is working - but we log only "http/s" traffic.
Here are our current rules/ACL's:
access-list INTERNET_TO_INSIDE permit tcp any host x.x.x.x eq 3
access-list INTERNET_TO_INSIDE permit tcp any host x.x.x.x eq https log 3
access-list INTERNET_TO_INSIDE permit tcp any host x.x.x.x eq ssh log 3
access-list INSIDE_TO_INTERNET permit tcp any any eq 3
access-list INSIDE_TO_INTERNET permit tcp any any eq https log 3
logging on
logging timestamp
logging buffered warnings
logging trap warnings
logging facility 19
logging host inside x.x.x.x 6/5140
access-group INTERNET_TO_INSIDE in interface outside
access-group INSIDE_TO_INTERNET in interface inside
Does any know how we can just log http/s traffic?
Thx in advance for any clues/help.
-P
We have a PIX 506e - we want to setup syslogging for "only" http" traffic.
Syslogging is working - but we log only "http/s" traffic.
Here are our current rules/ACL's:
access-list INTERNET_TO_INSIDE permit tcp any host x.x.x.x eq 3
access-list INTERNET_TO_INSIDE permit tcp any host x.x.x.x eq https log 3
access-list INTERNET_TO_INSIDE permit tcp any host x.x.x.x eq ssh log 3
access-list INSIDE_TO_INTERNET permit tcp any any eq 3
access-list INSIDE_TO_INTERNET permit tcp any any eq https log 3
logging on
logging timestamp
logging buffered warnings
logging trap warnings
logging facility 19
logging host inside x.x.x.x 6/5140
access-group INTERNET_TO_INSIDE in interface outside
access-group INSIDE_TO_INTERNET in interface inside
Does any know how we can just log http/s traffic?
Thx in advance for any clues/help.
-P